Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-uqpy-88us-aucj
SummaryThe application uses a weak password hash function, allowing an attacker to crack the weak password hash to gain access to an FTP user account.
Aliases
0
alias CVE-2025-49197
Fixed_packages
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-49197
reference_id
reference_type
scores
0
value 0.00161
scoring_system epss
scoring_elements 0.36851
published_at 2026-06-11T12:55:00Z
1
value 0.00161
scoring_system epss
scoring_elements 0.37041
published_at 2026-06-14T12:55:00Z
2
value 0.00161
scoring_system epss
scoring_elements 0.37056
published_at 2026-06-13T12:55:00Z
3
value 0.00161
scoring_system epss
scoring_elements 0.37028
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-49197
1
reference_url https://www.first.org/cvss/calculator/3.1
reference_id 3.1
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:19Z/
url https://www.first.org/cvss/calculator/3.1
2
reference_url https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
reference_id ics-recommended-practices
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:19Z/
url https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
3
reference_url https://sick.com/psirt
reference_id psirt
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:19Z/
url https://sick.com/psirt
4
reference_url https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json
reference_id sca-2025-0007.json
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:19Z/
url https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json
5
reference_url https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf
reference_id sca-2025-0007.pdf
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:19Z/
url https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf
6
reference_url https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
reference_id Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-12T14:39:19Z/
url https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
Weaknesses
0
cwe_id 328
name Use of Weak Hash
description The product uses an algorithm that produces a digest (output value) that does not meet security expectations for a hash function that allows an adversary to reasonably determine the original input (preimage attack), find another input that can produce the same hash (2nd preimage attack), or find multiple inputs that evaluate to the same hash (birthday attack).
Exploits
Severity_range_score6.5 - 6.5
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-uqpy-88us-aucj