Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-yk1q-p9e4-mygz

Summary WukongCRM-9.0-JAVA was discovered to contain a fastjson deserialization vulnerability via the /OaExamine/setOaExamine interface.

Aliases

0

alias	CVE-2025-60828

Fixed_packages

Affected_packages

References

0

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-60828

reference_id

reference_type

scores

0

value	0.00166
scoring_system	epss
scoring_elements	0.37496
published_at	2026-06-11T12:55:00Z

1

value	0.00166
scoring_system	epss
scoring_elements	0.37673
published_at	2026-06-12T12:55:00Z

2

value	0.00185
scoring_system	epss
scoring_elements	0.40288
published_at	2026-06-14T12:55:00Z

3

value	0.00185
scoring_system	epss
scoring_elements	0.40299
published_at	2026-06-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-60828

1

reference_url

https://gist.github.com/ChangeYourWay/424478421d6a78d1f87d324cddcbfd59

reference_id

424478421d6a78d1f87d324cddcbfd59

reference_type

scores

0

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

1

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-08T15:43:27Z/

url

https://gist.github.com/ChangeYourWay/424478421d6a78d1f87d324cddcbfd59

2

reference_url

https://github.com/ChangeYourWay/post/blob/main/WukongCRM-9.0-JAVA.md

reference_id

WukongCRM-9.0-JAVA.md

reference_type

scores

0

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

1

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-08T15:43:27Z/

url

https://github.com/ChangeYourWay/post/blob/main/WukongCRM-9.0-JAVA.md

Weaknesses

Exploits

Severity_range_score 6.5 - 6.5

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yk1q-p9e4-mygz