Package Instance

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2013-4346

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4346.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4346.json

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2013-4346

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4346

reference_id

reference_type

scores

value	0.00472
scoring_system	epss
scoring_elements	0.64597
published_at	2026-04-02T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64625
published_at	2026-04-13T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64653
published_at	2026-04-12T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64665
published_at	2026-04-11T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64648
published_at	2026-04-09T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64632
published_at	2026-04-08T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64584
published_at	2026-04-07T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64626
published_at	2026-04-04T12:55:00Z

value	0.00472
scoring_system	epss
scoring_elements	0.64544
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4346

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1007746

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1007746

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/oauth2/PYSEC-2014-85.yaml

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/oauth2/PYSEC-2014-85.yaml

reference_url

https://github.com/simplegeo/python-oauth2/issues/129

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/simplegeo/python-oauth2/issues/129

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-4346

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2013-4346

reference_url

https://web.archive.org/web/20200228063302/http://www.securityfocus.com/bid/62386

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20200228063302/http://www.securityfocus.com/bid/62386

reference_url

http://www.openwall.com/lists/oss-security/2013/09/12/7

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2013/09/12/7

reference_url	http://www.securityfocus.com/bid/62386
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/62386

reference_url

https://github.com/advisories/GHSA-4433-4cxq-vv73

reference_id

GHSA-4433-4cxq-vv73

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4433-4cxq-vv73

fixed_packages

aliases

CVE-2013-4346, GHSA-4433-4cxq-vv73, PYSEC-2014-85

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-tbug-mv5x-uucb

url VCID-utxw-251d-gfff

vulnerability_id VCID-utxw-251d-gfff

summary rhn_satellite_6: cross-site request forgery (CSRF) can force logout

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3590.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3590.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3590

reference_id

reference_type

scores

value	0.00242
scoring_system	epss
scoring_elements	0.47402
published_at	2026-04-01T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47436
published_at	2026-04-02T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47457
published_at	2026-04-04T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47407
published_at	2026-04-07T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47461
published_at	2026-04-08T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47458
published_at	2026-04-09T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47481
published_at	2026-04-11T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47456
published_at	2026-04-12T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47462
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3590

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1128108
reference_id	1128108
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1128108

fixed_packages

aliases CVE-2014-3590

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-utxw-251d-gfff

url

VCID-vhxh-tpay-mbh3

vulnerability_id

VCID-vhxh-tpay-mbh3

summary

qpid-cpp: AMQP 0-10 protocol sequence-set maximal range DoS (incomplete CVE-2015-0203 fix)

references

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178606.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178606.html

reference_url	http://mail-archives.apache.org/mod_mbox/www-announce/201501.mbox/%3C54C60497.5060504%40apache.org%3E
reference_id
reference_type
scores
url	http://mail-archives.apache.org/mod_mbox/www-announce/201501.mbox/%3C54C60497.5060504%40apache.org%3E

reference_url	http://packetstormsecurity.com/files/130105/Apache-Qpid-0.30-Crash.html
reference_id
reference_type
scores
url	http://packetstormsecurity.com/files/130105/Apache-Qpid-0.30-Crash.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-0660.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-0660.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-0661.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-0661.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-0662.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-0662.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-0707.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-0707.html

reference_url	https://access.redhat.com/errata/RHBA-2016:1500
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHBA-2016:1500

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0224.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0224.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-0224

reference_id

reference_type

scores

value	0.5601
scoring_system	epss
scoring_elements	0.98102
published_at	2026-04-13T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.98101
published_at	2026-04-12T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.98083
published_at	2026-04-01T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.98087
published_at	2026-04-02T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.9809
published_at	2026-04-04T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.98091
published_at	2026-04-07T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.98095
published_at	2026-04-08T12:55:00Z

value	0.5601
scoring_system	epss
scoring_elements	0.98096
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-0224

reference_url	https://issues.apache.org/jira/browse/QPID-6310
reference_id
reference_type
scores
url	https://issues.apache.org/jira/browse/QPID-6310

reference_url	http://www.securityfocus.com/archive/1/534545/100/0/threaded
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/534545/100/0/threaded

reference_url	http://www.securityfocus.com/bid/72317
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/72317

reference_url	http://www.securitytracker.com/id/1031872
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1031872

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1186302
reference_id	1186302
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1186302

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:qpid::::::::
reference_id	cpe:2.3:a:apache:qpid::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:qpid::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-0224

reference_id

CVE-2015-0224

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2015-0224

reference_url	https://access.redhat.com/errata/RHSA-2015:0660
reference_id	RHSA-2015:0660
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0660

reference_url	https://access.redhat.com/errata/RHSA-2015:0661
reference_id	RHSA-2015:0661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0661

reference_url	https://access.redhat.com/errata/RHSA-2015:0662
reference_id	RHSA-2015:0662
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0662

reference_url	https://access.redhat.com/errata/RHSA-2015:0707
reference_id	RHSA-2015:0707
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0707

reference_url	https://access.redhat.com/errata/RHSA-2015:0708
reference_id	RHSA-2015:0708
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0708

fixed_packages

aliases

CVE-2015-0224

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-vhxh-tpay-mbh3

url

VCID-zkgb-14kz-33dz

vulnerability_id

VCID-zkgb-14kz-33dz

summary

The (1) make_nonce, (2) generate_nonce, and (3) generate_verifier functions in SimpleGeo python-oauth2 uses weak random numbers to generate nonces, which makes it easier for remote attackers to guess the nonce via a brute force attack.

references

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2013-4347

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4347.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4347.json

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/security/cve/CVE-2013-4347

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4347

reference_id

reference_type

scores

value	0.00411
scoring_system	epss
scoring_elements	0.61402
published_at	2026-04-13T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61421
published_at	2026-04-12T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61276
published_at	2026-04-01T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61355
published_at	2026-04-02T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61383
published_at	2026-04-04T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61353
published_at	2026-04-07T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.614
published_at	2026-04-08T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61415
published_at	2026-04-09T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61436
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4347

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1007758

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1007758

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url