Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1
Typedeb
Namespacedebian
Namegst-plugins-bad1.0
Version1.4.4-2.1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.22.0-4+deb12u6
Latest_non_vulnerable_version1.22.0-4+deb12u6
Affected_by_vulnerabilities
0
url VCID-1fpa-vyzr-7khc
vulnerability_id VCID-1fpa-vyzr-7khc
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9446.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9446.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9446
reference_id
reference_type
scores
0
value 0.01283
scoring_system epss
scoring_elements 0.79547
published_at 2026-04-01T12:55:00Z
1
value 0.01283
scoring_system epss
scoring_elements 0.79629
published_at 2026-04-21T12:55:00Z
2
value 0.01283
scoring_system epss
scoring_elements 0.79627
published_at 2026-04-16T12:55:00Z
3
value 0.01283
scoring_system epss
scoring_elements 0.79626
published_at 2026-04-18T12:55:00Z
4
value 0.01283
scoring_system epss
scoring_elements 0.79553
published_at 2026-04-02T12:55:00Z
5
value 0.01283
scoring_system epss
scoring_elements 0.79576
published_at 2026-04-04T12:55:00Z
6
value 0.01283
scoring_system epss
scoring_elements 0.79564
published_at 2026-04-07T12:55:00Z
7
value 0.01283
scoring_system epss
scoring_elements 0.79592
published_at 2026-04-08T12:55:00Z
8
value 0.01283
scoring_system epss
scoring_elements 0.79599
published_at 2026-04-09T12:55:00Z
9
value 0.01283
scoring_system epss
scoring_elements 0.7962
published_at 2026-04-11T12:55:00Z
10
value 0.01283
scoring_system epss
scoring_elements 0.79604
published_at 2026-04-12T12:55:00Z
11
value 0.01283
scoring_system epss
scoring_elements 0.79597
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9446
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9445
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9445
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9446
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9446
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 1.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:P/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1397063
reference_id 1397063
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1397063
6
reference_url https://security.archlinux.org/ASA-201701-3
reference_id ASA-201701-3
reference_type
scores
url https://security.archlinux.org/ASA-201701-3
7
reference_url https://security.archlinux.org/AVG-76
reference_id AVG-76
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-76
8
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
9
reference_url https://access.redhat.com/errata/RHSA-2017:2060
reference_id RHSA-2017:2060
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:2060
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2016-9446
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1fpa-vyzr-7khc
1
url VCID-1pn1-qk99-jkaj
vulnerability_id VCID-1pn1-qk99-jkaj
summary regression update
references
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%2Bdeb10u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%2Bdeb10u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-7w2v-896g-aqec
2
vulnerability VCID-bq91-aydj-cfcy
3
vulnerability VCID-fbbn-5y2w-7fdk
4
vulnerability VCID-mk3b-hbpx-7bhy
5
vulnerability VCID-mp8d-mf52-wkhg
6
vulnerability VCID-n3c5-8bp9-qba6
7
vulnerability VCID-q56p-kvy2-23af
8
vulnerability VCID-qghh-5fn5-8bds
9
vulnerability VCID-s5qr-h24a-affm
10
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%252Bdeb10u2
aliases DSA-4833-2 gst-plugins-bad1.0
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1pn1-qk99-jkaj
2
url VCID-3cy1-fzbf-xfgn
vulnerability_id VCID-3cy1-fzbf-xfgn
summary gstreamer1-plugins-bad-free: mingw-gstreamer1-plugins-bad-free: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-3887.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-3887.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-3887
reference_id
reference_type
scores
0
value 0.01617
scoring_system epss
scoring_elements 0.81747
published_at 2026-04-02T12:55:00Z
1
value 0.01617
scoring_system epss
scoring_elements 0.81842
published_at 2026-04-21T12:55:00Z
2
value 0.01617
scoring_system epss
scoring_elements 0.81802
published_at 2026-04-13T12:55:00Z
3
value 0.01617
scoring_system epss
scoring_elements 0.81839
published_at 2026-04-16T12:55:00Z
4
value 0.01617
scoring_system epss
scoring_elements 0.8184
published_at 2026-04-18T12:55:00Z
5
value 0.01617
scoring_system epss
scoring_elements 0.8177
published_at 2026-04-04T12:55:00Z
6
value 0.01617
scoring_system epss
scoring_elements 0.81768
published_at 2026-04-07T12:55:00Z
7
value 0.01617
scoring_system epss
scoring_elements 0.81794
published_at 2026-04-08T12:55:00Z
8
value 0.01617
scoring_system epss
scoring_elements 0.818
published_at 2026-04-09T12:55:00Z
9
value 0.01617
scoring_system epss
scoring_elements 0.8182
published_at 2026-04-11T12:55:00Z
10
value 0.01617
scoring_system epss
scoring_elements 0.81807
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-3887
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3887
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3887
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106285
reference_id 1106285
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106285
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2367919
reference_id 2367919
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2367919
6
reference_url https://access.redhat.com/errata/RHSA-2025:8183
reference_id RHSA-2025:8183
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8183
7
reference_url https://access.redhat.com/errata/RHSA-2025:8184
reference_id RHSA-2025:8184
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8184
8
reference_url https://access.redhat.com/errata/RHSA-2025:8201
reference_id RHSA-2025:8201
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8201
9
reference_url https://access.redhat.com/errata/RHSA-2025:8976
reference_id RHSA-2025:8976
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8976
10
reference_url https://access.redhat.com/errata/RHSA-2025:8977
reference_id RHSA-2025:8977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8977
11
reference_url https://access.redhat.com/errata/RHSA-2025:8978
reference_id RHSA-2025:8978
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8978
12
reference_url https://access.redhat.com/errata/RHSA-2025:8979
reference_id RHSA-2025:8979
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8979
13
reference_url https://access.redhat.com/errata/RHSA-2025:8980
reference_id RHSA-2025:8980
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8980
14
reference_url https://access.redhat.com/errata/RHSA-2025:8981
reference_id RHSA-2025:8981
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:8981
15
reference_url https://access.redhat.com/errata/RHSA-2025:9056
reference_id RHSA-2025:9056
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9056
16
reference_url https://usn.ubuntu.com/7558-1/
reference_id USN-7558-1
reference_type
scores
url https://usn.ubuntu.com/7558-1/
17
reference_url https://www.zerodayinitiative.com/advisories/ZDI-25-267/
reference_id ZDI-25-267
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-05-22T18:39:14Z/
url https://www.zerodayinitiative.com/advisories/ZDI-25-267/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6
purl pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%252Bdeb12u6
aliases CVE-2025-3887
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3cy1-fzbf-xfgn
3
url VCID-55zx-9zp8-d7ce
vulnerability_id VCID-55zx-9zp8-d7ce
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5843.json
reference_id
reference_type
scores
0
value 2.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5843.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-5843
reference_id
reference_type
scores
0
value 0.0713
scoring_system epss
scoring_elements 0.91503
published_at 2026-04-01T12:55:00Z
1
value 0.0713
scoring_system epss
scoring_elements 0.91564
published_at 2026-04-21T12:55:00Z
2
value 0.0713
scoring_system epss
scoring_elements 0.91569
published_at 2026-04-16T12:55:00Z
3
value 0.0713
scoring_system epss
scoring_elements 0.91565
published_at 2026-04-18T12:55:00Z
4
value 0.0713
scoring_system epss
scoring_elements 0.91509
published_at 2026-04-02T12:55:00Z
5
value 0.0713
scoring_system epss
scoring_elements 0.91515
published_at 2026-04-04T12:55:00Z
6
value 0.0713
scoring_system epss
scoring_elements 0.91523
published_at 2026-04-07T12:55:00Z
7
value 0.0713
scoring_system epss
scoring_elements 0.91536
published_at 2026-04-08T12:55:00Z
8
value 0.0713
scoring_system epss
scoring_elements 0.91542
published_at 2026-04-09T12:55:00Z
9
value 0.0713
scoring_system epss
scoring_elements 0.91547
published_at 2026-04-11T12:55:00Z
10
value 0.0713
scoring_system epss
scoring_elements 0.91548
published_at 2026-04-12T12:55:00Z
11
value 0.0713
scoring_system epss
scoring_elements 0.91546
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-5843
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1419592
reference_id 1419592
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1419592
9
reference_url https://security.archlinux.org/ASA-201702-5
reference_id ASA-201702-5
reference_type
scores
url https://security.archlinux.org/ASA-201702-5
10
reference_url https://security.archlinux.org/AVG-165
reference_id AVG-165
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-165
11
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
12
reference_url https://access.redhat.com/errata/RHSA-2017:2060
reference_id RHSA-2017:2060
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:2060
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2017-5843
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-55zx-9zp8-d7ce
4
url VCID-646n-bbd9-rfak
vulnerability_id VCID-646n-bbd9-rfak
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9813.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9813.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9813
reference_id
reference_type
scores
0
value 0.04811
scoring_system epss
scoring_elements 0.89461
published_at 2026-04-01T12:55:00Z
1
value 0.04811
scoring_system epss
scoring_elements 0.89465
published_at 2026-04-02T12:55:00Z
2
value 0.04811
scoring_system epss
scoring_elements 0.89476
published_at 2026-04-04T12:55:00Z
3
value 0.04811
scoring_system epss
scoring_elements 0.89477
published_at 2026-04-07T12:55:00Z
4
value 0.04811
scoring_system epss
scoring_elements 0.89493
published_at 2026-04-08T12:55:00Z
5
value 0.04811
scoring_system epss
scoring_elements 0.89497
published_at 2026-04-09T12:55:00Z
6
value 0.04811
scoring_system epss
scoring_elements 0.89506
published_at 2026-04-11T12:55:00Z
7
value 0.04811
scoring_system epss
scoring_elements 0.89504
published_at 2026-04-12T12:55:00Z
8
value 0.04811
scoring_system epss
scoring_elements 0.89499
published_at 2026-04-13T12:55:00Z
9
value 0.04811
scoring_system epss
scoring_elements 0.89513
published_at 2026-04-16T12:55:00Z
10
value 0.04811
scoring_system epss
scoring_elements 0.89514
published_at 2026-04-18T12:55:00Z
11
value 0.04811
scoring_system epss
scoring_elements 0.89511
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9813
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:C
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1401934
reference_id 1401934
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1401934
9
reference_url https://bugzilla.gnome.org/show_bug.cgi?id=775120
reference_id CVE-2016-9813
reference_type exploit
scores
url https://bugzilla.gnome.org/show_bug.cgi?id=775120
10
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42162.txt
reference_id CVE-2016-9813
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42162.txt
11
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
12
reference_url https://access.redhat.com/errata/RHSA-2017:0021
reference_id RHSA-2017:0021
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0021
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2016-9813
risk_score 7.8
exploitability 2.0
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-646n-bbd9-rfak
5
url VCID-67ga-bujk-n7f8
vulnerability_id VCID-67ga-bujk-n7f8
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9812.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9812.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9812
reference_id
reference_type
scores
0
value 0.01408
scoring_system epss
scoring_elements 0.80432
published_at 2026-04-01T12:55:00Z
1
value 0.01408
scoring_system epss
scoring_elements 0.80438
published_at 2026-04-02T12:55:00Z
2
value 0.01408
scoring_system epss
scoring_elements 0.80459
published_at 2026-04-04T12:55:00Z
3
value 0.01408
scoring_system epss
scoring_elements 0.80448
published_at 2026-04-07T12:55:00Z
4
value 0.01408
scoring_system epss
scoring_elements 0.80478
published_at 2026-04-08T12:55:00Z
5
value 0.01408
scoring_system epss
scoring_elements 0.80488
published_at 2026-04-09T12:55:00Z
6
value 0.01408
scoring_system epss
scoring_elements 0.80506
published_at 2026-04-11T12:55:00Z
7
value 0.01408
scoring_system epss
scoring_elements 0.80491
published_at 2026-04-12T12:55:00Z
8
value 0.01408
scoring_system epss
scoring_elements 0.80484
published_at 2026-04-13T12:55:00Z
9
value 0.01408
scoring_system epss
scoring_elements 0.80512
published_at 2026-04-16T12:55:00Z
10
value 0.01408
scoring_system epss
scoring_elements 0.80514
published_at 2026-04-18T12:55:00Z
11
value 0.01408
scoring_system epss
scoring_elements 0.80516
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9812
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1401930
reference_id 1401930
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1401930
9
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
10
reference_url https://access.redhat.com/errata/RHSA-2017:0021
reference_id RHSA-2017:0021
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0021
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2016-9812
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-67ga-bujk-n7f8
6
url VCID-7w2v-896g-aqec
vulnerability_id VCID-7w2v-896g-aqec
summary Multiple vulnerabilities have been discovered in GStreamer and GStreamer Plugins, the worst of which could lead to code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44446.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44446.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-44446
reference_id
reference_type
scores
0
value 0.0386
scoring_system epss
scoring_elements 0.88228
published_at 2026-04-21T12:55:00Z
1
value 0.04175
scoring_system epss
scoring_elements 0.88654
published_at 2026-04-02T12:55:00Z
2
value 0.04175
scoring_system epss
scoring_elements 0.88695
published_at 2026-04-09T12:55:00Z
3
value 0.04175
scoring_system epss
scoring_elements 0.88707
published_at 2026-04-11T12:55:00Z
4
value 0.04175
scoring_system epss
scoring_elements 0.887
published_at 2026-04-13T12:55:00Z
5
value 0.04175
scoring_system epss
scoring_elements 0.88714
published_at 2026-04-16T12:55:00Z
6
value 0.04175
scoring_system epss
scoring_elements 0.8871
published_at 2026-04-18T12:55:00Z
7
value 0.04175
scoring_system epss
scoring_elements 0.8867
published_at 2026-04-04T12:55:00Z
8
value 0.04175
scoring_system epss
scoring_elements 0.88671
published_at 2026-04-07T12:55:00Z
9
value 0.04175
scoring_system epss
scoring_elements 0.88689
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-44446
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44429
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44429
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44446
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44446
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056101
reference_id 1056101
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056101
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2250249
reference_id 2250249
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2250249
7
reference_url https://security.gentoo.org/glsa/202406-06
reference_id GLSA-202406-06
reference_type
scores
url https://security.gentoo.org/glsa/202406-06
8
reference_url https://access.redhat.com/errata/RHSA-2023:7791
reference_id RHSA-2023:7791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7791
9
reference_url https://access.redhat.com/errata/RHSA-2023:7792
reference_id RHSA-2023:7792
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7792
10
reference_url https://access.redhat.com/errata/RHSA-2023:7840
reference_id RHSA-2023:7840
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7840
11
reference_url https://access.redhat.com/errata/RHSA-2023:7841
reference_id RHSA-2023:7841
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7841
12
reference_url https://access.redhat.com/errata/RHSA-2023:7872
reference_id RHSA-2023:7872
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7872
13
reference_url https://access.redhat.com/errata/RHSA-2023:7873
reference_id RHSA-2023:7873
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7873
14
reference_url https://access.redhat.com/errata/RHSA-2023:7874
reference_id RHSA-2023:7874
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7874
15
reference_url https://access.redhat.com/errata/RHSA-2023:7875
reference_id RHSA-2023:7875
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7875
16
reference_url https://access.redhat.com/errata/RHSA-2024:0013
reference_id RHSA-2024:0013
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0013
17
reference_url https://access.redhat.com/errata/RHSA-2024:0279
reference_id RHSA-2024:0279
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0279
18
reference_url https://gstreamer.freedesktop.org/security/sa-2023-0010.html
reference_id sa-2023-0010.html
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-03T20:28:49Z/
url https://gstreamer.freedesktop.org/security/sa-2023-0010.html
19
reference_url https://usn.ubuntu.com/6526-1/
reference_id USN-6526-1
reference_type
scores
url https://usn.ubuntu.com/6526-1/
20
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1647/
reference_id ZDI-23-1647
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-03T20:28:49Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1647/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2023-44446
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7w2v-896g-aqec
7
url VCID-8v4c-jsxq-yfdq
vulnerability_id VCID-8v4c-jsxq-yfdq
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5848.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5848.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-5848
reference_id
reference_type
scores
0
value 0.06521
scoring_system epss
scoring_elements 0.91067
published_at 2026-04-01T12:55:00Z
1
value 0.06521
scoring_system epss
scoring_elements 0.91144
published_at 2026-04-21T12:55:00Z
2
value 0.06521
scoring_system epss
scoring_elements 0.91117
published_at 2026-04-13T12:55:00Z
3
value 0.06521
scoring_system epss
scoring_elements 0.91141
published_at 2026-04-18T12:55:00Z
4
value 0.06521
scoring_system epss
scoring_elements 0.91073
published_at 2026-04-02T12:55:00Z
5
value 0.06521
scoring_system epss
scoring_elements 0.91082
published_at 2026-04-04T12:55:00Z
6
value 0.06521
scoring_system epss
scoring_elements 0.9109
published_at 2026-04-07T12:55:00Z
7
value 0.06521
scoring_system epss
scoring_elements 0.91103
published_at 2026-04-08T12:55:00Z
8
value 0.06521
scoring_system epss
scoring_elements 0.91109
published_at 2026-04-09T12:55:00Z
9
value 0.06521
scoring_system epss
scoring_elements 0.91116
published_at 2026-04-11T12:55:00Z
10
value 0.06521
scoring_system epss
scoring_elements 0.91118
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-5848
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1419583
reference_id 1419583
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1419583
9
reference_url https://security.archlinux.org/ASA-201702-5
reference_id ASA-201702-5
reference_type
scores
url https://security.archlinux.org/ASA-201702-5
10
reference_url https://security.archlinux.org/AVG-165
reference_id AVG-165
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-165
11
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
12
reference_url https://access.redhat.com/errata/RHSA-2017:2060
reference_id RHSA-2017:2060
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:2060
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2017-5848
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8v4c-jsxq-yfdq
8
url VCID-aj4h-u1er-7faf
vulnerability_id VCID-aj4h-u1er-7faf
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9445.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9445.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9445
reference_id
reference_type
scores
0
value 0.02406
scoring_system epss
scoring_elements 0.85006
published_at 2026-04-01T12:55:00Z
1
value 0.02406
scoring_system epss
scoring_elements 0.85101
published_at 2026-04-21T12:55:00Z
2
value 0.02406
scoring_system epss
scoring_elements 0.85102
published_at 2026-04-16T12:55:00Z
3
value 0.02406
scoring_system epss
scoring_elements 0.85104
published_at 2026-04-18T12:55:00Z
4
value 0.02406
scoring_system epss
scoring_elements 0.85019
published_at 2026-04-02T12:55:00Z
5
value 0.02406
scoring_system epss
scoring_elements 0.85036
published_at 2026-04-04T12:55:00Z
6
value 0.02406
scoring_system epss
scoring_elements 0.8504
published_at 2026-04-07T12:55:00Z
7
value 0.02406
scoring_system epss
scoring_elements 0.85063
published_at 2026-04-08T12:55:00Z
8
value 0.02406
scoring_system epss
scoring_elements 0.8507
published_at 2026-04-09T12:55:00Z
9
value 0.02406
scoring_system epss
scoring_elements 0.85086
published_at 2026-04-11T12:55:00Z
10
value 0.02406
scoring_system epss
scoring_elements 0.85084
published_at 2026-04-12T12:55:00Z
11
value 0.02406
scoring_system epss
scoring_elements 0.8508
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9445
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9445
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9445
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9446
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9446
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:N/I:P/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1395767
reference_id 1395767
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1395767
6
reference_url https://security.archlinux.org/ASA-201701-3
reference_id ASA-201701-3
reference_type
scores
url https://security.archlinux.org/ASA-201701-3
7
reference_url https://security.archlinux.org/AVG-76
reference_id AVG-76
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-76
8
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
9
reference_url https://access.redhat.com/errata/RHSA-2016:2974
reference_id RHSA-2016:2974
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:2974
10
reference_url https://access.redhat.com/errata/RHSA-2017:0018
reference_id RHSA-2017:0018
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0018
11
reference_url https://access.redhat.com/errata/RHSA-2017:0021
reference_id RHSA-2017:0021
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0021
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2016-9445
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aj4h-u1er-7faf
9
url VCID-bq91-aydj-cfcy
vulnerability_id VCID-bq91-aydj-cfcy
summary Multiple vulnerabilities have been discovered in GStreamer and GStreamer Plugins, the worst of which could lead to code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40475.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40475.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40475
reference_id
reference_type
scores
0
value 0.0428
scoring_system epss
scoring_elements 0.88801
published_at 2026-04-02T12:55:00Z
1
value 0.0428
scoring_system epss
scoring_elements 0.88858
published_at 2026-04-21T12:55:00Z
2
value 0.0428
scoring_system epss
scoring_elements 0.88842
published_at 2026-04-09T12:55:00Z
3
value 0.0428
scoring_system epss
scoring_elements 0.88854
published_at 2026-04-11T12:55:00Z
4
value 0.0428
scoring_system epss
scoring_elements 0.88849
published_at 2026-04-13T12:55:00Z
5
value 0.0428
scoring_system epss
scoring_elements 0.88862
published_at 2026-04-16T12:55:00Z
6
value 0.0428
scoring_system epss
scoring_elements 0.8886
published_at 2026-04-18T12:55:00Z
7
value 0.0428
scoring_system epss
scoring_elements 0.88817
published_at 2026-04-04T12:55:00Z
8
value 0.0428
scoring_system epss
scoring_elements 0.8882
published_at 2026-04-07T12:55:00Z
9
value 0.0428
scoring_system epss
scoring_elements 0.88837
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40475
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40474
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40475
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40475
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40476
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40476
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053260
reference_id 1053260
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053260
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2254588
reference_id 2254588
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2254588
8
reference_url https://security.gentoo.org/glsa/202406-06
reference_id GLSA-202406-06
reference_type
scores
url https://security.gentoo.org/glsa/202406-06
9
reference_url https://access.redhat.com/errata/RHSA-2024:2287
reference_id RHSA-2024:2287
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2287
10
reference_url https://access.redhat.com/errata/RHSA-2024:3060
reference_id RHSA-2024:3060
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3060
11
reference_url https://gstreamer.freedesktop.org/security/sa-2023-0007.html
reference_id sa-2023-0007.html
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-06T15:14:55Z/
url https://gstreamer.freedesktop.org/security/sa-2023-0007.html
12
reference_url https://usn.ubuntu.com/6526-1/
reference_id USN-6526-1
reference_type
scores
url https://usn.ubuntu.com/6526-1/
13
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1457/
reference_id ZDI-23-1457
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-06T15:14:55Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1457/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2023-40475
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bq91-aydj-cfcy
10
url VCID-fbbn-5y2w-7fdk
vulnerability_id VCID-fbbn-5y2w-7fdk
summary Multiple vulnerabilities have been discovered in GStreamer and GStreamer Plugins, the worst of which could lead to code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44429.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-44429.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-44429
reference_id
reference_type
scores
0
value 0.05986
scoring_system epss
scoring_elements 0.90636
published_at 2026-04-02T12:55:00Z
1
value 0.05986
scoring_system epss
scoring_elements 0.9069
published_at 2026-04-21T12:55:00Z
2
value 0.05986
scoring_system epss
scoring_elements 0.90672
published_at 2026-04-09T12:55:00Z
3
value 0.05986
scoring_system epss
scoring_elements 0.90681
published_at 2026-04-12T12:55:00Z
4
value 0.05986
scoring_system epss
scoring_elements 0.90676
published_at 2026-04-13T12:55:00Z
5
value 0.05986
scoring_system epss
scoring_elements 0.90695
published_at 2026-04-16T12:55:00Z
6
value 0.05986
scoring_system epss
scoring_elements 0.90693
published_at 2026-04-18T12:55:00Z
7
value 0.05986
scoring_system epss
scoring_elements 0.90647
published_at 2026-04-04T12:55:00Z
8
value 0.05986
scoring_system epss
scoring_elements 0.90655
published_at 2026-04-07T12:55:00Z
9
value 0.05986
scoring_system epss
scoring_elements 0.90666
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-44429
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44429
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44429
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44446
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44446
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056102
reference_id 1056102
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056102
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2250247
reference_id 2250247
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2250247
7
reference_url https://security.gentoo.org/glsa/202406-06
reference_id GLSA-202406-06
reference_type
scores
url https://security.gentoo.org/glsa/202406-06
8
reference_url https://access.redhat.com/errata/RHSA-2023:7791
reference_id RHSA-2023:7791
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7791
9
reference_url https://access.redhat.com/errata/RHSA-2023:7792
reference_id RHSA-2023:7792
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7792
10
reference_url https://access.redhat.com/errata/RHSA-2023:7873
reference_id RHSA-2023:7873
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:7873
11
reference_url https://gstreamer.freedesktop.org/security/sa-2023-0009.html
reference_id sa-2023-0009.html
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-03T16:30:35Z/
url https://gstreamer.freedesktop.org/security/sa-2023-0009.html
12
reference_url https://usn.ubuntu.com/6526-1/
reference_id USN-6526-1
reference_type
scores
url https://usn.ubuntu.com/6526-1/
13
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1648/
reference_id ZDI-23-1648
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-03T16:30:35Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1648/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2023-44429
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fbbn-5y2w-7fdk
11
url VCID-mk3b-hbpx-7bhy
vulnerability_id VCID-mk3b-hbpx-7bhy
summary Multiple vulnerabilities have been discovered in GStreamer and GStreamer Plugins, the worst of which could lead to code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40474.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40474.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40474
reference_id
reference_type
scores
0
value 0.06534
scoring_system epss
scoring_elements 0.91079
published_at 2026-04-02T12:55:00Z
1
value 0.06534
scoring_system epss
scoring_elements 0.9115
published_at 2026-04-21T12:55:00Z
2
value 0.06534
scoring_system epss
scoring_elements 0.91115
published_at 2026-04-09T12:55:00Z
3
value 0.06534
scoring_system epss
scoring_elements 0.91122
published_at 2026-04-11T12:55:00Z
4
value 0.06534
scoring_system epss
scoring_elements 0.91123
published_at 2026-04-13T12:55:00Z
5
value 0.06534
scoring_system epss
scoring_elements 0.91147
published_at 2026-04-16T12:55:00Z
6
value 0.06534
scoring_system epss
scoring_elements 0.91146
published_at 2026-04-18T12:55:00Z
7
value 0.06534
scoring_system epss
scoring_elements 0.91087
published_at 2026-04-04T12:55:00Z
8
value 0.06534
scoring_system epss
scoring_elements 0.91096
published_at 2026-04-07T12:55:00Z
9
value 0.06534
scoring_system epss
scoring_elements 0.91109
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40474
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40474
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40475
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40475
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40476
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40476
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053261
reference_id 1053261
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053261
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2254587
reference_id 2254587
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2254587
8
reference_url https://security.gentoo.org/glsa/202406-06
reference_id GLSA-202406-06
reference_type
scores
url https://security.gentoo.org/glsa/202406-06
9
reference_url https://access.redhat.com/errata/RHSA-2024:2287
reference_id RHSA-2024:2287
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2287
10
reference_url https://access.redhat.com/errata/RHSA-2024:3060
reference_id RHSA-2024:3060
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3060
11
reference_url https://gstreamer.freedesktop.org/security/sa-2023-0006.html
reference_id sa-2023-0006.html
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-15T17:12:24Z/
url https://gstreamer.freedesktop.org/security/sa-2023-0006.html
12
reference_url https://usn.ubuntu.com/6526-1/
reference_id USN-6526-1
reference_type
scores
url https://usn.ubuntu.com/6526-1/
13
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1456/
reference_id ZDI-23-1456
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-15T17:12:24Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1456/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2023-40474
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mk3b-hbpx-7bhy
12
url VCID-mp8d-mf52-wkhg
vulnerability_id VCID-mp8d-mf52-wkhg
summary gstreamer-plugins-bad: heap overwrite in PGS subtitle overlay decoder
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-37329.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-37329.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-37329
reference_id
reference_type
scores
0
value 0.0474
scoring_system epss
scoring_elements 0.89376
published_at 2026-04-02T12:55:00Z
1
value 0.0474
scoring_system epss
scoring_elements 0.89427
published_at 2026-04-18T12:55:00Z
2
value 0.0474
scoring_system epss
scoring_elements 0.89408
published_at 2026-04-09T12:55:00Z
3
value 0.0474
scoring_system epss
scoring_elements 0.89416
published_at 2026-04-11T12:55:00Z
4
value 0.0474
scoring_system epss
scoring_elements 0.89415
published_at 2026-04-12T12:55:00Z
5
value 0.0474
scoring_system epss
scoring_elements 0.8941
published_at 2026-04-13T12:55:00Z
6
value 0.0474
scoring_system epss
scoring_elements 0.89425
published_at 2026-04-21T12:55:00Z
7
value 0.0474
scoring_system epss
scoring_elements 0.89386
published_at 2026-04-04T12:55:00Z
8
value 0.0474
scoring_system epss
scoring_elements 0.89388
published_at 2026-04-07T12:55:00Z
9
value 0.0474
scoring_system epss
scoring_elements 0.89404
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-37329
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37329
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37329
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2254541
reference_id 2254541
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2254541
5
reference_url https://gstreamer.freedesktop.org/security/sa-2023-0002.html
reference_id sa-2023-0002.html
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:15:54Z/
url https://gstreamer.freedesktop.org/security/sa-2023-0002.html
6
reference_url https://usn.ubuntu.com/6526-1/
reference_id USN-6526-1
reference_type
scores
url https://usn.ubuntu.com/6526-1/
7
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-902/
reference_id ZDI-23-902
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-07T17:15:54Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-902/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2023-37329
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mp8d-mf52-wkhg
13
url VCID-n3c5-8bp9-qba6
vulnerability_id VCID-n3c5-8bp9-qba6
summary gstreamer: AV1 Video Parsing Stack-based Buffer Overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0444.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0444.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-0444
reference_id
reference_type
scores
0
value 0.03631
scoring_system epss
scoring_elements 0.87843
published_at 2026-04-21T12:55:00Z
1
value 0.03631
scoring_system epss
scoring_elements 0.8784
published_at 2026-04-11T12:55:00Z
2
value 0.03631
scoring_system epss
scoring_elements 0.87835
published_at 2026-04-12T12:55:00Z
3
value 0.03631
scoring_system epss
scoring_elements 0.87833
published_at 2026-04-13T12:55:00Z
4
value 0.03631
scoring_system epss
scoring_elements 0.87847
published_at 2026-04-16T12:55:00Z
5
value 0.03631
scoring_system epss
scoring_elements 0.87846
published_at 2026-04-18T12:55:00Z
6
value 0.03631
scoring_system epss
scoring_elements 0.87786
published_at 2026-04-02T12:55:00Z
7
value 0.03631
scoring_system epss
scoring_elements 0.87797
published_at 2026-04-04T12:55:00Z
8
value 0.03631
scoring_system epss
scoring_elements 0.878
published_at 2026-04-07T12:55:00Z
9
value 0.03631
scoring_system epss
scoring_elements 0.87822
published_at 2026-04-08T12:55:00Z
10
value 0.03631
scoring_system epss
scoring_elements 0.87828
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-0444
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0444
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0444
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2292335
reference_id 2292335
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2292335
5
reference_url https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/f368d63ecd89e01fd2cf0b1c4def5fc782b2c390
reference_id f368d63ecd89e01fd2cf0b1c4def5fc782b2c390
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-10T14:25:55Z/
url https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/f368d63ecd89e01fd2cf0b1c4def5fc782b2c390
6
reference_url https://access.redhat.com/errata/RHSA-2025:18416
reference_id RHSA-2025:18416
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:18416
7
reference_url https://access.redhat.com/errata/RHSA-2025:7178
reference_id RHSA-2025:7178
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:7178
8
reference_url https://usn.ubuntu.com/7558-1/
reference_id USN-7558-1
reference_type
scores
url https://usn.ubuntu.com/7558-1/
9
reference_url https://www.zerodayinitiative.com/advisories/ZDI-24-567/
reference_id ZDI-24-567
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-10T14:25:55Z/
url https://www.zerodayinitiative.com/advisories/ZDI-24-567/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2024-0444
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n3c5-8bp9-qba6
14
url VCID-nu6q-wxgm-w7fj
vulnerability_id VCID-nu6q-wxgm-w7fj
summary security update
references
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%2Bdeb10u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%2Bdeb10u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-7w2v-896g-aqec
2
vulnerability VCID-bq91-aydj-cfcy
3
vulnerability VCID-fbbn-5y2w-7fdk
4
vulnerability VCID-mk3b-hbpx-7bhy
5
vulnerability VCID-mp8d-mf52-wkhg
6
vulnerability VCID-n3c5-8bp9-qba6
7
vulnerability VCID-q56p-kvy2-23af
8
vulnerability VCID-qghh-5fn5-8bds
9
vulnerability VCID-s5qr-h24a-affm
10
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%252Bdeb10u2
aliases DSA-4902-1 gst-plugins-bad1.0
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nu6q-wxgm-w7fj
15
url VCID-q56p-kvy2-23af
vulnerability_id VCID-q56p-kvy2-23af
summary GStreamer: GStreamer: Remote Code Execution via heap-based buffer overflow in JPEG parser
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3082.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-3082.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-3082
reference_id
reference_type
scores
0
value 0.00062
scoring_system epss
scoring_elements 0.19578
published_at 2026-04-02T12:55:00Z
1
value 0.00062
scoring_system epss
scoring_elements 0.19345
published_at 2026-04-07T12:55:00Z
2
value 0.00062
scoring_system epss
scoring_elements 0.19624
published_at 2026-04-04T12:55:00Z
3
value 0.00062
scoring_system epss
scoring_elements 0.19423
published_at 2026-04-08T12:55:00Z
4
value 0.00062
scoring_system epss
scoring_elements 0.19474
published_at 2026-04-09T12:55:00Z
5
value 0.00062
scoring_system epss
scoring_elements 0.19478
published_at 2026-04-11T12:55:00Z
6
value 0.00062
scoring_system epss
scoring_elements 0.19431
published_at 2026-04-12T12:55:00Z
7
value 0.00062
scoring_system epss
scoring_elements 0.19373
published_at 2026-04-13T12:55:00Z
8
value 0.00068
scoring_system epss
scoring_elements 0.20903
published_at 2026-04-16T12:55:00Z
9
value 0.00068
scoring_system epss
scoring_elements 0.20886
published_at 2026-04-21T12:55:00Z
10
value 0.00068
scoring_system epss
scoring_elements 0.20905
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-3082
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3082
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-3082
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2447492
reference_id 2447492
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2447492
5
reference_url https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7d3c258ed928cf59d126c8ea926b185f046f444c
reference_id 7d3c258ed928cf59d126c8ea926b185f046f444c
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-17T12:53:08Z/
url https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/7d3c258ed928cf59d126c8ea926b185f046f444c
6
reference_url https://access.redhat.com/errata/RHSA-2026:6259
reference_id RHSA-2026:6259
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6259
7
reference_url https://access.redhat.com/errata/RHSA-2026:6300
reference_id RHSA-2026:6300
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6300
8
reference_url https://access.redhat.com/errata/RHSA-2026:6750
reference_id RHSA-2026:6750
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6750
9
reference_url https://access.redhat.com/errata/RHSA-2026:7673
reference_id RHSA-2026:7673
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7673
10
reference_url https://access.redhat.com/errata/RHSA-2026:8854
reference_id RHSA-2026:8854
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8854
11
reference_url https://access.redhat.com/errata/RHSA-2026:8857
reference_id RHSA-2026:8857
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8857
12
reference_url https://access.redhat.com/errata/RHSA-2026:8862
reference_id RHSA-2026:8862
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8862
13
reference_url https://access.redhat.com/errata/RHSA-2026:8874
reference_id RHSA-2026:8874
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8874
14
reference_url https://access.redhat.com/errata/RHSA-2026:8876
reference_id RHSA-2026:8876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8876
15
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-163/
reference_id ZDI-26-163
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-17T12:53:08Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-163/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6
purl pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%252Bdeb12u6
aliases CVE-2026-3082
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q56p-kvy2-23af
16
url VCID-qghh-5fn5-8bds
vulnerability_id VCID-qghh-5fn5-8bds
summary GStreamer: GStreamer: Remote Code Execution via out-of-bounds write in DVB Subtitles handling
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2923.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-2923.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-2923
reference_id
reference_type
scores
0
value 0.00086
scoring_system epss
scoring_elements 0.24891
published_at 2026-04-02T12:55:00Z
1
value 0.00086
scoring_system epss
scoring_elements 0.24705
published_at 2026-04-07T12:55:00Z
2
value 0.00086
scoring_system epss
scoring_elements 0.24931
published_at 2026-04-04T12:55:00Z
3
value 0.00086
scoring_system epss
scoring_elements 0.24773
published_at 2026-04-08T12:55:00Z
4
value 0.00086
scoring_system epss
scoring_elements 0.24819
published_at 2026-04-09T12:55:00Z
5
value 0.00086
scoring_system epss
scoring_elements 0.24833
published_at 2026-04-11T12:55:00Z
6
value 0.00086
scoring_system epss
scoring_elements 0.24793
published_at 2026-04-12T12:55:00Z
7
value 0.00086
scoring_system epss
scoring_elements 0.24736
published_at 2026-04-13T12:55:00Z
8
value 0.00093
scoring_system epss
scoring_elements 0.26083
published_at 2026-04-16T12:55:00Z
9
value 0.00093
scoring_system epss
scoring_elements 0.26025
published_at 2026-04-21T12:55:00Z
10
value 0.00093
scoring_system epss
scoring_elements 0.2606
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-2923
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2923
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-2923
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1130059
reference_id 1130059
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1130059
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2447503
reference_id 2447503
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2447503
6
reference_url https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/3b8253f447bcc9831dbf643d2c69b205fedbe086
reference_id 3b8253f447bcc9831dbf643d2c69b205fedbe086
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T20:25:14Z/
url https://gitlab.freedesktop.org/gstreamer/gstreamer/-/commit/3b8253f447bcc9831dbf643d2c69b205fedbe086
7
reference_url https://access.redhat.com/errata/RHSA-2026:6259
reference_id RHSA-2026:6259
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6259
8
reference_url https://access.redhat.com/errata/RHSA-2026:6300
reference_id RHSA-2026:6300
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6300
9
reference_url https://access.redhat.com/errata/RHSA-2026:6750
reference_id RHSA-2026:6750
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:6750
10
reference_url https://access.redhat.com/errata/RHSA-2026:8854
reference_id RHSA-2026:8854
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8854
11
reference_url https://access.redhat.com/errata/RHSA-2026:8862
reference_id RHSA-2026:8862
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:8862
12
reference_url https://www.zerodayinitiative.com/advisories/ZDI-26-161/
reference_id ZDI-26-161
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-16T20:25:14Z/
url https://www.zerodayinitiative.com/advisories/ZDI-26-161/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6
purl pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%252Bdeb12u6
aliases CVE-2026-2923
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qghh-5fn5-8bds
17
url VCID-qync-5kha-4bgu
vulnerability_id VCID-qync-5kha-4bgu
summary 
Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9809.json
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9809.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9809
reference_id
reference_type
scores
0
value 0.00471
scoring_system epss
scoring_elements 0.64521
published_at 2026-04-01T12:55:00Z
1
value 0.00471
scoring_system epss
scoring_elements 0.64574
published_at 2026-04-02T12:55:00Z
2
value 0.00471
scoring_system epss
scoring_elements 0.64603
published_at 2026-04-13T12:55:00Z
3
value 0.00471
scoring_system epss
scoring_elements 0.64561
published_at 2026-04-07T12:55:00Z
4
value 0.00471
scoring_system epss
scoring_elements 0.64609
published_at 2026-04-08T12:55:00Z
5
value 0.00471
scoring_system epss
scoring_elements 0.64626
published_at 2026-04-09T12:55:00Z
6
value 0.00471
scoring_system epss
scoring_elements 0.64644
published_at 2026-04-11T12:55:00Z
7
value 0.00471
scoring_system epss
scoring_elements 0.64631
published_at 2026-04-12T12:55:00Z
8
value 0.00471
scoring_system epss
scoring_elements 0.64638
published_at 2026-04-16T12:55:00Z
9
value 0.00471
scoring_system epss
scoring_elements 0.6465
published_at 2026-04-18T12:55:00Z
10
value 0.00471
scoring_system epss
scoring_elements 0.64636
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9809
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1401880
reference_id 1401880
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1401880
9
reference_url https://security.gentoo.org/glsa/201705-10
reference_id GLSA-201705-10
reference_type
scores
url https://security.gentoo.org/glsa/201705-10
10
reference_url https://access.redhat.com/errata/RHSA-2017:0018
reference_id RHSA-2017:0018
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0018
11
reference_url https://access.redhat.com/errata/RHSA-2017:0021
reference_id RHSA-2017:0021
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0021
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1fpa-vyzr-7khc
1
vulnerability VCID-1pn1-qk99-jkaj
2
vulnerability VCID-3cy1-fzbf-xfgn
3
vulnerability VCID-55zx-9zp8-d7ce
4
vulnerability VCID-646n-bbd9-rfak
5
vulnerability VCID-67ga-bujk-n7f8
6
vulnerability VCID-7w2v-896g-aqec
7
vulnerability VCID-8v4c-jsxq-yfdq
8
vulnerability VCID-aj4h-u1er-7faf
9
vulnerability VCID-bq91-aydj-cfcy
10
vulnerability VCID-fbbn-5y2w-7fdk
11
vulnerability VCID-mk3b-hbpx-7bhy
12
vulnerability VCID-mp8d-mf52-wkhg
13
vulnerability VCID-n3c5-8bp9-qba6
14
vulnerability VCID-nu6q-wxgm-w7fj
15
vulnerability VCID-q56p-kvy2-23af
16
vulnerability VCID-qghh-5fn5-8bds
17
vulnerability VCID-qync-5kha-4bgu
18
vulnerability VCID-s5qr-h24a-affm
19
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1pn1-qk99-jkaj
1
vulnerability VCID-3cy1-fzbf-xfgn
2
vulnerability VCID-7w2v-896g-aqec
3
vulnerability VCID-bq91-aydj-cfcy
4
vulnerability VCID-fbbn-5y2w-7fdk
5
vulnerability VCID-mk3b-hbpx-7bhy
6
vulnerability VCID-mp8d-mf52-wkhg
7
vulnerability VCID-n3c5-8bp9-qba6
8
vulnerability VCID-nu6q-wxgm-w7fj
9
vulnerability VCID-q56p-kvy2-23af
10
vulnerability VCID-qghh-5fn5-8bds
11
vulnerability VCID-s5qr-h24a-affm
12
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1
aliases CVE-2016-9809
risk_score 1.4
exploitability 0.5
weighted_severity 2.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qync-5kha-4bgu
18
url VCID-s5qr-h24a-affm
vulnerability_id VCID-s5qr-h24a-affm
summary Multiple vulnerabilities have been discovered in GStreamer and GStreamer Plugins, the worst of which could lead to code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40476.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40476.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-40476
reference_id
reference_type
scores
0
value 0.06219
scoring_system epss
scoring_elements 0.90833
published_at 2026-04-02T12:55:00Z
1
value 0.06219
scoring_system epss
scoring_elements 0.90902
published_at 2026-04-21T12:55:00Z
2
value 0.06219
scoring_system epss
scoring_elements 0.90871
published_at 2026-04-09T12:55:00Z
3
value 0.06219
scoring_system epss
scoring_elements 0.9088
published_at 2026-04-12T12:55:00Z
4
value 0.06219
scoring_system epss
scoring_elements 0.90879
published_at 2026-04-13T12:55:00Z
5
value 0.06219
scoring_system epss
scoring_elements 0.90904
published_at 2026-04-16T12:55:00Z
6
value 0.06219
scoring_system epss
scoring_elements 0.90901
published_at 2026-04-18T12:55:00Z
7
value 0.06219
scoring_system epss
scoring_elements 0.90843
published_at 2026-04-04T12:55:00Z
8
value 0.06219
scoring_system epss
scoring_elements 0.90853
published_at 2026-04-07T12:55:00Z
9
value 0.06219
scoring_system epss
scoring_elements 0.90865
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-40476
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40474
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40475
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40475
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40476
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40476
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053259
reference_id 1053259
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053259
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2254589
reference_id 2254589
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2254589
8
reference_url https://security.gentoo.org/glsa/202406-06
reference_id GLSA-202406-06
reference_type
scores
url https://security.gentoo.org/glsa/202406-06
9
reference_url https://access.redhat.com/errata/RHSA-2024:2287
reference_id RHSA-2024:2287
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2287
10
reference_url https://access.redhat.com/errata/RHSA-2024:3060
reference_id RHSA-2024:3060
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3060
11
reference_url https://gstreamer.freedesktop.org/security/sa-2023-0008.html
reference_id sa-2023-0008.html
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-23T19:53:11Z/
url https://gstreamer.freedesktop.org/security/sa-2023-0008.html
12
reference_url https://usn.ubuntu.com/6526-1/
reference_id USN-6526-1
reference_type
scores
url https://usn.ubuntu.com/6526-1/
13
reference_url https://www.zerodayinitiative.com/advisories/ZDI-23-1458/
reference_id ZDI-23-1458
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-07-23T19:53:11Z/
url https://www.zerodayinitiative.com/advisories/ZDI-23-1458/
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2023-40476
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s5qr-h24a-affm
19
url VCID-sw1k-355a-xfe8
vulnerability_id VCID-sw1k-355a-xfe8
summary Multiple vulnerabilities have been found in GStreamer and its plugins, the worst of which could result in arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3185.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3185.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3185
reference_id
reference_type
scores
0
value 0.00668
scoring_system epss
scoring_elements 0.7124
published_at 2026-04-01T12:55:00Z
1
value 0.00668
scoring_system epss
scoring_elements 0.71282
published_at 2026-04-08T12:55:00Z
2
value 0.00668
scoring_system epss
scoring_elements 0.71249
published_at 2026-04-02T12:55:00Z
3
value 0.00668
scoring_system epss
scoring_elements 0.71266
published_at 2026-04-04T12:55:00Z
4
value 0.00668
scoring_system epss
scoring_elements 0.71241
published_at 2026-04-07T12:55:00Z
5
value 0.00668
scoring_system epss
scoring_elements 0.71296
published_at 2026-04-09T12:55:00Z
6
value 0.00668
scoring_system epss
scoring_elements 0.71319
published_at 2026-04-11T12:55:00Z
7
value 0.00668
scoring_system epss
scoring_elements 0.71303
published_at 2026-04-12T12:55:00Z
8
value 0.0074
scoring_system epss
scoring_elements 0.7296
published_at 2026-04-18T12:55:00Z
9
value 0.0074
scoring_system epss
scoring_elements 0.72953
published_at 2026-04-21T12:55:00Z
10
value 0.0074
scoring_system epss
scoring_elements 0.72909
published_at 2026-04-13T12:55:00Z
11
value 0.0074
scoring_system epss
scoring_elements 0.72951
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3185
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3185
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3185
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1917192
reference_id 1917192
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1917192
5
reference_url https://security.archlinux.org/AVG-1484
reference_id AVG-1484
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1484
6
reference_url https://security.gentoo.org/glsa/202208-31
reference_id GLSA-202208-31
reference_type
scores
url https://security.gentoo.org/glsa/202208-31
fixed_packages
0
url pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%2Bdeb10u2
purl pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%2Bdeb10u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-7w2v-896g-aqec
2
vulnerability VCID-bq91-aydj-cfcy
3
vulnerability VCID-fbbn-5y2w-7fdk
4
vulnerability VCID-mk3b-hbpx-7bhy
5
vulnerability VCID-mp8d-mf52-wkhg
6
vulnerability VCID-n3c5-8bp9-qba6
7
vulnerability VCID-q56p-kvy2-23af
8
vulnerability VCID-qghh-5fn5-8bds
9
vulnerability VCID-s5qr-h24a-affm
10
vulnerability VCID-sw1k-355a-xfe8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.14.4-1%252Bdeb10u2
1
url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3cy1-fzbf-xfgn
1
vulnerability VCID-q56p-kvy2-23af
2
vulnerability VCID-qghh-5fn5-8bds
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4
aliases CVE-2021-3185
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sw1k-355a-xfe8
Fixing_vulnerabilities
Risk_score7.8
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1