Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-veb9-7659-wfg7
SummaryAudacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and play the temporary audio .au files located there.
Aliases
0
alias CVE-2020-11867
Fixed_packages
0
url pkg:deb/debian/audacity@2.4.2~dfsg0-4?distro=trixie
purl pkg:deb/debian/audacity@2.4.2~dfsg0-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.4.2~dfsg0-4%3Fdistro=trixie
1
url pkg:deb/debian/audacity@2.4.2~dfsg0-5?distro=trixie
purl pkg:deb/debian/audacity@2.4.2~dfsg0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.4.2~dfsg0-5%3Fdistro=trixie
2
url pkg:deb/debian/audacity@2.4.2~dfsg0-5
purl pkg:deb/debian/audacity@2.4.2~dfsg0-5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.4.2~dfsg0-5
3
url pkg:deb/debian/audacity@3.2.4%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/audacity@3.2.4%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@3.2.4%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/audacity@3.7.3%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/audacity@3.7.3%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@3.7.3%252Bdfsg-1%3Fdistro=trixie
5
url pkg:deb/debian/audacity@3.7.7%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/audacity@3.7.7%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@3.7.7%252Bdfsg-1%3Fdistro=trixie
Affected_packages
0
url pkg:alpm/archlinux/audacity@1:2.4.1-4
purl pkg:alpm/archlinux/audacity@1:2.4.1-4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/audacity@1:2.4.1-4
1
url pkg:deb/debian/audacity@0.98-3
purl pkg:deb/debian/audacity@0.98-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2u5b-cbtr-xqa1
1
vulnerability VCID-4e8r-fvv6-f7f2
2
vulnerability VCID-4zzy-q5zp-jkgm
3
vulnerability VCID-c1k4-7mhy-73gp
4
vulnerability VCID-nxc6-nv2g-17g6
5
vulnerability VCID-qtav-hqnd-b7fa
6
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@0.98-3
2
url pkg:deb/debian/audacity@1.2.3-1
purl pkg:deb/debian/audacity@1.2.3-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2u5b-cbtr-xqa1
1
vulnerability VCID-4e8r-fvv6-f7f2
2
vulnerability VCID-4zzy-q5zp-jkgm
3
vulnerability VCID-c1k4-7mhy-73gp
4
vulnerability VCID-nxc6-nv2g-17g6
5
vulnerability VCID-qtav-hqnd-b7fa
6
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.2.3-1
3
url pkg:deb/debian/audacity@1.2.4b-2.1
purl pkg:deb/debian/audacity@1.2.4b-2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2u5b-cbtr-xqa1
1
vulnerability VCID-4e8r-fvv6-f7f2
2
vulnerability VCID-4zzy-q5zp-jkgm
3
vulnerability VCID-c1k4-7mhy-73gp
4
vulnerability VCID-nxc6-nv2g-17g6
5
vulnerability VCID-qtav-hqnd-b7fa
6
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.2.4b-2.1
4
url pkg:deb/debian/audacity@1.3.5-2%2Blenny1
purl pkg:deb/debian/audacity@1.3.5-2%2Blenny1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4e8r-fvv6-f7f2
1
vulnerability VCID-c1k4-7mhy-73gp
2
vulnerability VCID-nxc6-nv2g-17g6
3
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.5-2%252Blenny1
5
url pkg:deb/debian/audacity@1.3.12-6
purl pkg:deb/debian/audacity@1.3.12-6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4e8r-fvv6-f7f2
1
vulnerability VCID-nxc6-nv2g-17g6
2
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.12-6
6
url pkg:deb/debian/audacity@2.0.1-1
purl pkg:deb/debian/audacity@2.0.1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4e8r-fvv6-f7f2
1
vulnerability VCID-nxc6-nv2g-17g6
2
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.0.1-1
7
url pkg:deb/debian/audacity@2.0.6-2
purl pkg:deb/debian/audacity@2.0.6-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-4e8r-fvv6-f7f2
1
vulnerability VCID-nxc6-nv2g-17g6
2
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.0.6-2
8
url pkg:deb/debian/audacity@2.1.2-2
purl pkg:deb/debian/audacity@2.1.2-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.1.2-2
9
url pkg:deb/debian/audacity@2.2.2-1
purl pkg:deb/debian/audacity@2.2.2-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-veb9-7659-wfg7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.2.2-1
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-11867
reference_id
reference_type
scores
0
value 0.00118
scoring_system epss
scoring_elements 0.30307
published_at 2026-05-14T12:55:00Z
1
value 0.00118
scoring_system epss
scoring_elements 0.30749
published_at 2026-04-01T12:55:00Z
2
value 0.00118
scoring_system epss
scoring_elements 0.30876
published_at 2026-04-02T12:55:00Z
3
value 0.00118
scoring_system epss
scoring_elements 0.30923
published_at 2026-04-04T12:55:00Z
4
value 0.00118
scoring_system epss
scoring_elements 0.30743
published_at 2026-04-07T12:55:00Z
5
value 0.00118
scoring_system epss
scoring_elements 0.30801
published_at 2026-04-08T12:55:00Z
6
value 0.00118
scoring_system epss
scoring_elements 0.30833
published_at 2026-04-09T12:55:00Z
7
value 0.00118
scoring_system epss
scoring_elements 0.30835
published_at 2026-04-11T12:55:00Z
8
value 0.00118
scoring_system epss
scoring_elements 0.3079
published_at 2026-04-12T12:55:00Z
9
value 0.00118
scoring_system epss
scoring_elements 0.30745
published_at 2026-04-13T12:55:00Z
10
value 0.00118
scoring_system epss
scoring_elements 0.3077
published_at 2026-04-16T12:55:00Z
11
value 0.00118
scoring_system epss
scoring_elements 0.3075
published_at 2026-04-18T12:55:00Z
12
value 0.00118
scoring_system epss
scoring_elements 0.30716
published_at 2026-04-21T12:55:00Z
13
value 0.00118
scoring_system epss
scoring_elements 0.3055
published_at 2026-04-24T12:55:00Z
14
value 0.00118
scoring_system epss
scoring_elements 0.30433
published_at 2026-04-26T12:55:00Z
15
value 0.00118
scoring_system epss
scoring_elements 0.30349
published_at 2026-04-29T12:55:00Z
16
value 0.00118
scoring_system epss
scoring_elements 0.30209
published_at 2026-05-05T12:55:00Z
17
value 0.00118
scoring_system epss
scoring_elements 0.30279
published_at 2026-05-07T12:55:00Z
18
value 0.00118
scoring_system epss
scoring_elements 0.30288
published_at 2026-05-09T12:55:00Z
19
value 0.00118
scoring_system epss
scoring_elements 0.30214
published_at 2026-05-11T12:55:00Z
20
value 0.00118
scoring_system epss
scoring_elements 0.30236
published_at 2026-05-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-11867
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976874
reference_id 976874
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976874
3
reference_url https://security.archlinux.org/AVG-1311
reference_id AVG-1311
reference_type
scores
0
value Low
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1311
4
reference_url https://usn.ubuntu.com/7211-1/
reference_id USN-7211-1
reference_type
scores
url https://usn.ubuntu.com/7211-1/
Weaknesses
Exploits
Severity_range_score0.1 - 3
Exploitability0.5
Weighted_severity2.7
Risk_score1.4
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-veb9-7659-wfg7