Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ebuild/media-libs/openjpeg@2.3.0

Type ebuild

Namespace media-libs

Name openjpeg

Version 2.3.0

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.4.0

Latest_non_vulnerable_version 2.5.0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1fdm-wd1v-4yf2

vulnerability_id VCID-1fdm-wd1v-4yf2

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14164.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14164.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14164

reference_id

reference_type

scores

value	0.00789
scoring_system	epss
scoring_elements	0.73814
published_at	2026-04-01T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73823
published_at	2026-04-02T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73847
published_at	2026-04-04T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73817
published_at	2026-04-07T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73852
published_at	2026-04-08T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73865
published_at	2026-04-09T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73887
published_at	2026-04-11T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73869
published_at	2026-04-12T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.7386
published_at	2026-04-13T12:55:00Z

value	0.00789
scoring_system	epss
scoring_elements	0.73902
published_at	2026-04-16T12:55:00Z

value	0.00832
scoring_system	epss
scoring_elements	0.74612
published_at	2026-04-18T12:55:00Z

value	0.00832
scoring_system	epss
scoring_elements	0.74603
published_at	2026-04-21T12:55:00Z

value	0.00832
scoring_system	epss
scoring_elements	0.74639
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14164

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1489836
reference_id	1489836
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1489836

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2017-14164

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1fdm-wd1v-4yf2

url VCID-3dsk-ukgp-m3g8

vulnerability_id VCID-3dsk-ukgp-m3g8

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9581.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9581.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9581

reference_id

reference_type

scores

value	0.0033
scoring_system	epss
scoring_elements	0.55819
published_at	2026-04-01T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55931
published_at	2026-04-07T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55953
published_at	2026-04-04T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55982
published_at	2026-04-08T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55985
published_at	2026-04-09T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55995
published_at	2026-04-11T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55975
published_at	2026-04-12T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55957
published_at	2026-04-13T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55993
published_at	2026-04-16T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55996
published_at	2026-04-18T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55971
published_at	2026-04-21T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.55898
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9581

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9581
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9581

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1405135
reference_id	1405135
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1405135

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9581

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3dsk-ukgp-m3g8

url VCID-6m6f-5tup-pbay

vulnerability_id VCID-6m6f-5tup-pbay

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10506.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10506.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10506

reference_id

reference_type

scores

value	0.04295
scoring_system	epss
scoring_elements	0.88813
published_at	2026-04-01T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88822
published_at	2026-04-02T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88838
published_at	2026-04-04T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.8884
published_at	2026-04-07T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88858
published_at	2026-04-08T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88863
published_at	2026-04-09T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88875
published_at	2026-04-11T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.8887
published_at	2026-04-12T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88869
published_at	2026-04-13T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88883
published_at	2026-04-16T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88881
published_at	2026-04-18T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88878
published_at	2026-04-21T12:55:00Z

value	0.04295
scoring_system	epss
scoring_elements	0.88894
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10506

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10506
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10506

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1487376
reference_id	1487376
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1487376

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

reference_url	https://usn.ubuntu.com/USN-4782-1/
reference_id	USN-USN-4782-1
reference_type
scores
url	https://usn.ubuntu.com/USN-4782-1/

reference_url	https://usn.ubuntu.com/USN-5664-1/
reference_id	USN-USN-5664-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5664-1/

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-10506

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6m6f-5tup-pbay

url VCID-6ufq-1h7p-pubn

vulnerability_id VCID-6ufq-1h7p-pubn

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9115.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9115.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9115

reference_id

reference_type

scores

value	0.00374
scoring_system	epss
scoring_elements	0.58991
published_at	2026-04-01T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.5911
published_at	2026-04-21T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59126
published_at	2026-04-16T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.5913
published_at	2026-04-18T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59066
published_at	2026-04-02T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59089
published_at	2026-04-04T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59053
published_at	2026-04-07T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59104
published_at	2026-04-08T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59109
published_at	2026-04-09T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59127
published_at	2026-04-11T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.59108
published_at	2026-04-12T12:55:00Z

value	0.00374
scoring_system	epss
scoring_elements	0.5909
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9115

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9115
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9115

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231
reference_id	1390231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844554
reference_id	844554
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844554

reference_url

https://security.archlinux.org/AVG-54

reference_id

AVG-54

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-54

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9115

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6ufq-1h7p-pubn

url VCID-79gj-uaj1-qkdr

vulnerability_id VCID-79gj-uaj1-qkdr

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9113.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9113.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9113

reference_id

reference_type

scores

value	0.00448
scoring_system	epss
scoring_elements	0.6345
published_at	2026-04-01T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63582
published_at	2026-04-24T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.6358
published_at	2026-04-18T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63563
published_at	2026-04-21T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63509
published_at	2026-04-02T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63537
published_at	2026-04-04T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63501
published_at	2026-04-07T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63552
published_at	2026-04-08T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.6357
published_at	2026-04-12T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63586
published_at	2026-04-11T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63536
published_at	2026-04-13T12:55:00Z

value	0.00448
scoring_system	epss
scoring_elements	0.63572
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9113

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9113
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9113

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231
reference_id	1390231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844552
reference_id	844552
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844552

reference_url

https://security.archlinux.org/AVG-54

reference_id

AVG-54

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-54

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9113

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-79gj-uaj1-qkdr

url VCID-bksp-aumt-p3bg

vulnerability_id VCID-bksp-aumt-p3bg

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9114.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9114.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9114

reference_id

reference_type

scores

value	0.00478
scoring_system	epss
scoring_elements	0.64885
published_at	2026-04-01T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65021
published_at	2026-04-24T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65016
published_at	2026-04-18T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65001
published_at	2026-04-21T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64935
published_at	2026-04-02T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64962
published_at	2026-04-04T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64925
published_at	2026-04-07T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64975
published_at	2026-04-08T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.6499
published_at	2026-04-09T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65007
published_at	2026-04-11T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64996
published_at	2026-04-12T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64969
published_at	2026-04-13T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65005
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9114

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9114
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9114

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231
reference_id	1390231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844553
reference_id	844553
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844553

reference_url

https://security.archlinux.org/AVG-54

reference_id

AVG-54

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-54

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9114

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bksp-aumt-p3bg

url VCID-c5ac-9zuq-bqe1

vulnerability_id VCID-c5ac-9zuq-bqe1

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9116.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9116.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9116

reference_id

reference_type

scores

value	0.00581
scoring_system	epss
scoring_elements	0.68837
published_at	2026-04-01T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68986
published_at	2026-04-24T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68955
published_at	2026-04-18T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68935
published_at	2026-04-21T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68855
published_at	2026-04-02T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68876
published_at	2026-04-04T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68857
published_at	2026-04-07T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68906
published_at	2026-04-08T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68925
published_at	2026-04-09T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68948
published_at	2026-04-11T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68933
published_at	2026-04-12T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68904
published_at	2026-04-13T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68945
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9116

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9116
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9116

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231
reference_id	1390231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844555
reference_id	844555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844555

reference_url

https://security.archlinux.org/AVG-54

reference_id

AVG-54

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-54

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9116

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c5ac-9zuq-bqe1

url VCID-c6g2-dknk-u3cy

vulnerability_id VCID-c6g2-dknk-u3cy

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9573.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9573.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9573

reference_id

reference_type

scores

value	0.01059
scoring_system	epss
scoring_elements	0.77565
published_at	2026-04-01T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77572
published_at	2026-04-02T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77599
published_at	2026-04-04T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.7758
published_at	2026-04-07T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77608
published_at	2026-04-08T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77615
published_at	2026-04-09T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77642
published_at	2026-04-11T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77626
published_at	2026-04-12T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77624
published_at	2026-04-13T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77662
published_at	2026-04-16T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.7766
published_at	2026-04-18T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77654
published_at	2026-04-21T12:55:00Z

value	0.01059
scoring_system	epss
scoring_elements	0.77684
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9573

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5158
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5158

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5159
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5159

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8332
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8332

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9572
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9572

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9573
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9573

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1402711
reference_id	1402711
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1402711

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851422
reference_id	851422
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851422

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

reference_url	https://access.redhat.com/errata/RHSA-2017:0838
reference_id	RHSA-2017:0838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0838

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9573

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c6g2-dknk-u3cy

url VCID-cgjw-v1jx-1qg3

vulnerability_id VCID-cgjw-v1jx-1qg3

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10507.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10507.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10507

reference_id

reference_type

scores

value	0.00375
scoring_system	epss
scoring_elements	0.59108
published_at	2026-04-24T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59148
published_at	2026-04-18T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59128
published_at	2026-04-21T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70843
published_at	2026-04-02T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70861
published_at	2026-04-04T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70836
published_at	2026-04-07T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.7088
published_at	2026-04-08T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70895
published_at	2026-04-09T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70919
published_at	2026-04-11T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70903
published_at	2026-04-12T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70887
published_at	2026-04-13T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70933
published_at	2026-04-16T12:55:00Z

value	0.00653
scoring_system	epss
scoring_elements	0.70829
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10507

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10507
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10507

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1487377
reference_id	1487377
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1487377

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-10507

risk_score 1.7

exploitability 0.5

weighted_severity 3.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cgjw-v1jx-1qg3

url VCID-e76r-pz11-yfhu

vulnerability_id VCID-e76r-pz11-yfhu

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url	http://googlechromereleases.blogspot.com/2016/02/stable-channel-update_9.html
reference_id
reference_type
scores
url	http://googlechromereleases.blogspot.com/2016/02/stable-channel-update_9.html

reference_url	http://lists.opensuse.org/opensuse-updates/2016-02/msg00104.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2016-02/msg00104.html

reference_url	http://lists.opensuse.org/opensuse-updates/2016-02/msg00119.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2016-02/msg00119.html

reference_url	http://rhn.redhat.com/errata/RHSA-2016-0241.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2016-0241.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1626.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1626.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-1626

reference_id

reference_type

scores

value	0.00638
scoring_system	epss
scoring_elements	0.70568
published_at	2026-04-24T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70517
published_at	2026-04-21T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70423
published_at	2026-04-01T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70436
published_at	2026-04-02T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70454
published_at	2026-04-04T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70432
published_at	2026-04-07T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70477
published_at	2026-04-08T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70492
published_at	2026-04-09T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70516
published_at	2026-04-11T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70501
published_at	2026-04-12T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70487
published_at	2026-04-13T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.7053
published_at	2026-04-16T12:55:00Z

value	0.00638
scoring_system	epss
scoring_elements	0.70538
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-1626

reference_url	https://code.google.com/p/chromium/issues/detail?id=571480
reference_id
reference_type
scores
url	https://code.google.com/p/chromium/issues/detail?id=571480

reference_url	https://codereview.chromium.org/1583233008
reference_id
reference_type
scores
url	https://codereview.chromium.org/1583233008

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1624

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1627
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1627

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1629
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1629

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152

reference_url	http://www.debian.org/security/2016/dsa-3486
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3486

reference_url	http://www.securityfocus.com/bid/83125
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/83125

reference_url	http://www.securitytracker.com/id/1035183
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1035183

reference_url	http://www.zerodayinitiative.com/advisories/ZDI-16-171
reference_id
reference_type
scores
url	http://www.zerodayinitiative.com/advisories/ZDI-16-171

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1306156
reference_id	1306156
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1306156

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:48.0.2564.103:::::::*
reference_id	cpe:2.3:a:google:chrome:48.0.2564.103:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome:48.0.2564.103:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-1626

reference_id

CVE-2016-1626

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:N

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2016-1626

reference_url	https://security.gentoo.org/glsa/201603-09
reference_id	GLSA-201603-09
reference_type
scores
url	https://security.gentoo.org/glsa/201603-09

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

reference_url	https://access.redhat.com/errata/RHSA-2016:0241
reference_id	RHSA-2016:0241
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0241

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-1626

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e76r-pz11-yfhu

url VCID-eavm-6anm-nfgu

vulnerability_id VCID-eavm-6anm-nfgu

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9112.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9112.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9112

reference_id

reference_type

scores

value	0.00782
scoring_system	epss
scoring_elements	0.73677
published_at	2026-04-01T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73686
published_at	2026-04-02T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.7371
published_at	2026-04-04T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73682
published_at	2026-04-07T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73717
published_at	2026-04-08T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.7373
published_at	2026-04-09T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73752
published_at	2026-04-11T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73734
published_at	2026-04-12T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73725
published_at	2026-04-13T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73767
published_at	2026-04-21T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.73776
published_at	2026-04-18T12:55:00Z

value	0.00782
scoring_system	epss
scoring_elements	0.738
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9112

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9112
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9112

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1418147
reference_id	1418147
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1418147

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844551
reference_id	844551
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844551

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

reference_url	https://usn.ubuntu.com/4497-1/
reference_id	USN-4497-1
reference_type
scores
url	https://usn.ubuntu.com/4497-1/

reference_url	https://usn.ubuntu.com/USN-5664-1/
reference_id	USN-USN-5664-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5664-1/

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9112

risk_score 1.6

exploitability 0.5

weighted_severity 3.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eavm-6anm-nfgu

url VCID-fq9r-fneu-1fhu

vulnerability_id VCID-fq9r-fneu-1fhu

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14039.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14039.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14039

reference_id

reference_type

scores

value	0.00644
scoring_system	epss
scoring_elements	0.70575
published_at	2026-04-01T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70644
published_at	2026-04-09T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70628
published_at	2026-04-08T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70667
published_at	2026-04-11T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70652
published_at	2026-04-12T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70638
published_at	2026-04-13T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70683
published_at	2026-04-16T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70588
published_at	2026-04-02T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70605
published_at	2026-04-04T12:55:00Z

value	0.00644
scoring_system	epss
scoring_elements	0.70583
published_at	2026-04-07T12:55:00Z

value	0.00678
scoring_system	epss
scoring_elements	0.71603
published_at	2026-04-24T12:55:00Z

value	0.00678
scoring_system	epss
scoring_elements	0.71574
published_at	2026-04-18T12:55:00Z

value	0.00678
scoring_system	epss
scoring_elements	0.71553
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1487768
reference_id	1487768
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1487768

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874118
reference_id	874118
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874118

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2017-14039

risk_score 1.7

exploitability 0.5

weighted_severity 3.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fq9r-fneu-1fhu

url VCID-jayn-yzet-k7g5

vulnerability_id VCID-jayn-yzet-k7g5

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9118.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9118.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9118

reference_id

reference_type

scores

value	0.00547
scoring_system	epss
scoring_elements	0.67792
published_at	2026-04-01T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67894
published_at	2026-04-21T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.679
published_at	2026-04-16T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67864
published_at	2026-04-13T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67826
published_at	2026-04-02T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67846
published_at	2026-04-04T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67825
published_at	2026-04-07T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67876
published_at	2026-04-08T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.6789
published_at	2026-04-09T12:55:00Z

value	0.00547
scoring_system	epss
scoring_elements	0.67913
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9118

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231
reference_id	1390231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844557
reference_id	844557
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844557

reference_url

https://security.archlinux.org/AVG-54

reference_id

AVG-54

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-54

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9118

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jayn-yzet-k7g5

url VCID-jpxx-3mbf-pyhe

vulnerability_id VCID-jpxx-3mbf-pyhe

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9572.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9572.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9572

reference_id

reference_type

scores

value	0.01771
scoring_system	epss
scoring_elements	0.82584
published_at	2026-04-01T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82599
published_at	2026-04-02T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82614
published_at	2026-04-04T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.8261
published_at	2026-04-07T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82636
published_at	2026-04-08T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82644
published_at	2026-04-09T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82662
published_at	2026-04-11T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82656
published_at	2026-04-12T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82651
published_at	2026-04-13T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82688
published_at	2026-04-16T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82689
published_at	2026-04-18T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82692
published_at	2026-04-21T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.82714
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9572

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5158
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5158

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5159
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5159

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8332
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8332

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9572
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9572

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9573
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9573

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1402714
reference_id	1402714
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1402714

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851422
reference_id	851422
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851422

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9572

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jpxx-3mbf-pyhe

url VCID-jqup-3gmb-mqbh

vulnerability_id VCID-jqup-3gmb-mqbh

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url	http://googlechromereleases.blogspot.com/2016/02/stable-channel-update_9.html
reference_id
reference_type
scores
url	http://googlechromereleases.blogspot.com/2016/02/stable-channel-update_9.html

reference_url	http://rhn.redhat.com/errata/RHSA-2016-0241.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2016-0241.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1628.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1628.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-1628

reference_id

reference_type

scores

value	0.00908
scoring_system	epss
scoring_elements	0.75839
published_at	2026-04-24T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75799
published_at	2026-04-21T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75715
published_at	2026-04-01T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75718
published_at	2026-04-02T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75749
published_at	2026-04-04T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75727
published_at	2026-04-07T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75761
published_at	2026-04-08T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75773
published_at	2026-04-09T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75797
published_at	2026-04-11T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75778
published_at	2026-04-12T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75772
published_at	2026-04-13T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.7581
published_at	2026-04-16T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.75814
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-1628

reference_url	https://code.google.com/p/chromium/issues/detail?id=571479
reference_id
reference_type
scores
url	https://code.google.com/p/chromium/issues/detail?id=571479

reference_url	https://codereview.chromium.org/1590593002
reference_id
reference_type
scores
url	https://codereview.chromium.org/1590593002

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1622
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1622

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1623
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1623

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1624

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1626

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1627
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1627

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1628

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1629
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1629

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5152

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9118

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14039

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14040

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14041

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14152

reference_url	http://www.debian.org/security/2016/dsa-3486
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3486

reference_url	http://www.debian.org/security/2017/dsa-4013
reference_id
reference_type
scores
url	http://www.debian.org/security/2017/dsa-4013

reference_url	http://www.securityfocus.com/bid/83125
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/83125

reference_url	http://www.securitytracker.com/id/1035183
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1035183

reference_url	http://www.zerodayinitiative.com/advisories/ZDI-16-172/
reference_id
reference_type
scores
url	http://www.zerodayinitiative.com/advisories/ZDI-16-172/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1310577
reference_id	1310577
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1310577

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome::::::::
reference_id	cpe:2.3:a:google:chrome::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-1628

reference_id

CVE-2016-1628

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://nvd.nist.gov/vuln/detail/CVE-2016-1628

reference_url	https://security.gentoo.org/glsa/201603-09
reference_id	GLSA-201603-09
reference_type
scores
url	https://security.gentoo.org/glsa/201603-09

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

reference_url	https://access.redhat.com/errata/RHSA-2016:0241
reference_id	RHSA-2016:0241
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0241

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-1628

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jqup-3gmb-mqbh

url VCID-ndpq-xye2-tugw

vulnerability_id VCID-ndpq-xye2-tugw

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12982.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12982.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12982

reference_id

reference_type

scores

value	0.00313
scoring_system	epss
scoring_elements	0.54366
published_at	2026-04-01T12:55:00Z

value	0.00402
scoring_system	epss
scoring_elements	0.60832
published_at	2026-04-24T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62282
published_at	2026-04-18T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62179
published_at	2026-04-02T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62209
published_at	2026-04-04T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62177
published_at	2026-04-07T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62227
published_at	2026-04-08T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62244
published_at	2026-04-09T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62262
published_at	2026-04-11T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62252
published_at	2026-04-12T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.6223
published_at	2026-04-13T12:55:00Z

value	0.00425
scoring_system	epss
scoring_elements	0.62275
published_at	2026-04-16T12:55:00Z

value	0.00631
scoring_system	epss
scoring_elements	0.70326
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12982

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12982
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12982

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1487236
reference_id	1487236
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1487236

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

reference_url	https://usn.ubuntu.com/USN-4782-1/
reference_id	USN-USN-4782-1
reference_type
scores
url	https://usn.ubuntu.com/USN-4782-1/

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2017-12982

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ndpq-xye2-tugw

url VCID-p8cf-jwbw-57a2

vulnerability_id VCID-p8cf-jwbw-57a2

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9580.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9580.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9580

reference_id

reference_type

scores

value	0.00379
scoring_system	epss
scoring_elements	0.59273
published_at	2026-04-01T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59347
published_at	2026-04-02T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59371
published_at	2026-04-04T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59337
published_at	2026-04-07T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59388
published_at	2026-04-08T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59402
published_at	2026-04-09T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.5942
published_at	2026-04-11T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59404
published_at	2026-04-12T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59386
published_at	2026-04-13T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59418
published_at	2026-04-16T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59425
published_at	2026-04-18T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59406
published_at	2026-04-21T12:55:00Z

value	0.00379
scoring_system	epss
scoring_elements	0.59382
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9580

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9580
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9580

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1405128
reference_id	1405128
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1405128

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9580

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p8cf-jwbw-57a2

url VCID-wc6r-1t2c-9qdp

vulnerability_id VCID-wc6r-1t2c-9qdp

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10504.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10504.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10504

reference_id

reference_type

scores

value	0.06106
scoring_system	epss
scoring_elements	0.90738
published_at	2026-04-01T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90817
published_at	2026-04-24T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90808
published_at	2026-04-16T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90806
published_at	2026-04-21T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90744
published_at	2026-04-02T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90756
published_at	2026-04-04T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90766
published_at	2026-04-07T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90777
published_at	2026-04-08T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90783
published_at	2026-04-09T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90792
published_at	2026-04-11T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90791
published_at	2026-04-12T12:55:00Z

value	0.06106
scoring_system	epss
scoring_elements	0.90789
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10504

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10504
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10504

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1487369
reference_id	1487369
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1487369

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874113
reference_id	874113
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874113

reference_url	https://github.com/uclouvain/openjpeg/issues/835
reference_id	CVE-2016-10504
reference_type	exploit
scores
url	https://github.com/uclouvain/openjpeg/issues/835

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42600.txt
reference_id	CVE-2016-10504
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42600.txt

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-10504

risk_score 9.4

exploitability 2.0

weighted_severity 4.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wc6r-1t2c-9qdp

url VCID-xbqc-rpc9-ukfx

vulnerability_id VCID-xbqc-rpc9-ukfx

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10505.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10505.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10505

reference_id

reference_type

scores

value	0.00656
scoring_system	epss
scoring_elements	0.70947
published_at	2026-04-01T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.70957
published_at	2026-04-02T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.70974
published_at	2026-04-04T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.70949
published_at	2026-04-07T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.70991
published_at	2026-04-08T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.71007
published_at	2026-04-09T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.71029
published_at	2026-04-21T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.71014
published_at	2026-04-12T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.70997
published_at	2026-04-13T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.71043
published_at	2026-04-16T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.7105
published_at	2026-04-18T12:55:00Z

value	0.00656
scoring_system	epss
scoring_elements	0.71085
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10505

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10505
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10505

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1487373
reference_id	1487373
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1487373

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-10505

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xbqc-rpc9-ukfx

url VCID-z7pa-e78j-wuft

vulnerability_id VCID-z7pa-e78j-wuft

summary

Multiple vulnerabilities have been found in OpenJPEG, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9117.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9117.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9117

reference_id

reference_type

scores

value	0.00581
scoring_system	epss
scoring_elements	0.68837
published_at	2026-04-01T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68986
published_at	2026-04-24T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68955
published_at	2026-04-18T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68935
published_at	2026-04-21T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68855
published_at	2026-04-02T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68876
published_at	2026-04-04T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68857
published_at	2026-04-07T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68906
published_at	2026-04-08T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68925
published_at	2026-04-09T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68948
published_at	2026-04-11T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68933
published_at	2026-04-12T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68904
published_at	2026-04-13T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68945
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9117

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9117
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9117

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231
reference_id	1390231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1390231

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844556
reference_id	844556
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=844556

reference_url

https://security.archlinux.org/AVG-54

reference_id

AVG-54

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-54

reference_url	https://security.gentoo.org/glsa/201710-26
reference_id	GLSA-201710-26
reference_type
scores
url	https://security.gentoo.org/glsa/201710-26

fixed_packages

url	pkg:ebuild/media-libs/openjpeg@2.3.0
purl	pkg:ebuild/media-libs/openjpeg@2.3.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

aliases CVE-2016-9117

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z7pa-e78j-wuft

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/openjpeg@2.3.0

Package Instance