Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-f5vu-k9rc-27fz

Summary

Improper Validation of Array Index
Array index error in the scanstring function in the _json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the raw_decode function.

Aliases

alias	CVE-2014-4616

alias	GHSA-9772-cwx9-r4cj

Fixed_packages

url	pkg:apk/alpine/python@2.7.7-r0?arch=armhf&distroversion=v3.4&reponame=main
purl	pkg:apk/alpine/python@2.7.7-r0?arch=armhf&distroversion=v3.4&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python@2.7.7-r0%3Farch=armhf&distroversion=v3.4&reponame=main

url	pkg:apk/alpine/python@2.7.7-r0?arch=x86&distroversion=v3.4&reponame=main
purl	pkg:apk/alpine/python@2.7.7-r0?arch=x86&distroversion=v3.4&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python@2.7.7-r0%3Farch=x86&distroversion=v3.4&reponame=main

url	pkg:apk/alpine/python@2.7.7-r0?arch=x86_64&distroversion=v3.4&reponame=main
purl	pkg:apk/alpine/python@2.7.7-r0?arch=x86_64&distroversion=v3.4&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python@2.7.7-r0%3Farch=x86_64&distroversion=v3.4&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=aarch64&distroversion=v3.6&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=aarch64&distroversion=v3.6&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=aarch64&distroversion=v3.6&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=s390x&distroversion=v3.6&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=s390x&distroversion=v3.6&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=s390x&distroversion=v3.6&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=x86&distroversion=v3.6&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=x86&distroversion=v3.6&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=x86&distroversion=v3.6&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=x86_64&distroversion=v3.6&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=x86_64&distroversion=v3.6&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=x86_64&distroversion=v3.6&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=armhf&distroversion=v3.5&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=armhf&distroversion=v3.5&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=armhf&distroversion=v3.5&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=aarch64&distroversion=v3.5&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=aarch64&distroversion=v3.5&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=aarch64&distroversion=v3.5&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=x86&distroversion=v3.5&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=x86&distroversion=v3.5&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=x86&distroversion=v3.5&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=x86_64&distroversion=v3.5&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=x86_64&distroversion=v3.5&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=x86_64&distroversion=v3.5&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=armhf&distroversion=v3.6&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=armhf&distroversion=v3.6&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=armhf&distroversion=v3.6&reponame=main

url	pkg:apk/alpine/python2@2.7.7-r0?arch=ppc64le&distroversion=v3.6&reponame=main
purl	pkg:apk/alpine/python2@2.7.7-r0?arch=ppc64le&distroversion=v3.6&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/python2@2.7.7-r0%3Farch=ppc64le&distroversion=v3.6&reponame=main

url	pkg:deb/debian/python2.7@2.7.7-1?distro=bullseye
purl	pkg:deb/debian/python2.7@2.7.7-1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.7-1%3Fdistro=bullseye

url pkg:deb/debian/python2.7@2.7.9-2

purl pkg:deb/debian/python2.7@2.7.9-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1taa-a9e4-tbc5

vulnerability	VCID-2czu-wy37-qugf

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-3mu8-g6x3-effb

vulnerability	VCID-4py6-hkzp-v3d4

vulnerability	VCID-4q79-666d-rygx

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-57c6-hx7f-efc6

vulnerability	VCID-7jat-6ags-qbdr

vulnerability	VCID-9mcr-rmtb-mufj

vulnerability	VCID-c97c-3177-wkhx

vulnerability	VCID-dkxn-j9dr-sqbp

vulnerability	VCID-dv5v-71b5-budp

vulnerability	VCID-gfzb-b7tt-fkgz

vulnerability	VCID-gkfp-ga1r-jkag

vulnerability	VCID-hcq4-yq9k-jygb

vulnerability	VCID-hgwh-tzsf-suc1

vulnerability	VCID-j9s6-2y47-zbbt

vulnerability	VCID-k18q-3e9y-ykgf

vulnerability	VCID-ppqx-qup8-sqbz

vulnerability	VCID-tyk4-kazt-kydj

vulnerability	VCID-ugfy-dufq-hfb2

vulnerability	VCID-v84j-ugn9-w3c8

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-w6k8-js68-87g4

vulnerability	VCID-wq7w-nrar-ykde

vulnerability	VCID-wxhp-wayg-qbd1

vulnerability	VCID-x7h3-nmjt-aud5

vulnerability	VCID-xv9p-nyha-xygv

vulnerability	VCID-yqm8-fk44-4yhk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.9-2

url	pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye
purl	pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.18-8%252Bdeb11u1%3Fdistro=bullseye

url	pkg:ebuild/dev-lang/python@2.7.9-r1
purl	pkg:ebuild/dev-lang/python@2.7.9-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@2.7.9-r1

url	pkg:ebuild/dev-lang/python@3.3.5-r1
purl	pkg:ebuild/dev-lang/python@3.3.5-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.3.5-r1

url	pkg:pypi/simplejson@2.6.1
purl	pkg:pypi/simplejson@2.6.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.6.1

Affected_packages

url pkg:deb/debian/python2.7@2.7.3-6%2Bdeb7u2

purl pkg:deb/debian/python2.7@2.7.3-6%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mw1-384y-huc7

vulnerability	VCID-1taa-a9e4-tbc5

vulnerability	VCID-2czu-wy37-qugf

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-3mu8-g6x3-effb

vulnerability	VCID-4py6-hkzp-v3d4

vulnerability	VCID-4q79-666d-rygx

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-57c6-hx7f-efc6

vulnerability	VCID-7jat-6ags-qbdr

vulnerability	VCID-8aq9-8cf5-qbet

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-9jj2-hsne-mbac

vulnerability	VCID-9mcr-rmtb-mufj

vulnerability	VCID-c97c-3177-wkhx

vulnerability	VCID-dkxn-j9dr-sqbp

vulnerability	VCID-dv5v-71b5-budp

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-g81p-pg7g-xfcf

vulnerability	VCID-gfzb-b7tt-fkgz

vulnerability	VCID-gkfp-ga1r-jkag

vulnerability	VCID-hcq4-yq9k-jygb

vulnerability	VCID-hgwh-tzsf-suc1

vulnerability	VCID-j9s6-2y47-zbbt

vulnerability	VCID-k18q-3e9y-ykgf

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-ppqx-qup8-sqbz

vulnerability	VCID-tyk4-kazt-kydj

vulnerability	VCID-ugfy-dufq-hfb2

vulnerability	VCID-v84j-ugn9-w3c8

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-w6k8-js68-87g4

vulnerability	VCID-w85n-mm5g-5yd1

vulnerability	VCID-wq7w-nrar-ykde

vulnerability	VCID-wxhp-wayg-qbd1

vulnerability	VCID-x7h3-nmjt-aud5

vulnerability	VCID-xv9p-nyha-xygv

vulnerability	VCID-yqm8-fk44-4yhk

vulnerability	VCID-z6kh-961g-duck

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.3-6%252Bdeb7u2

url pkg:pypi/simplejson@1.1

purl pkg:pypi/simplejson@1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.1

url pkg:pypi/simplejson@1.3

purl pkg:pypi/simplejson@1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.3

url pkg:pypi/simplejson@1.4

purl pkg:pypi/simplejson@1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.4

url pkg:pypi/simplejson@1.5

purl pkg:pypi/simplejson@1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.5

url pkg:pypi/simplejson@1.6

purl pkg:pypi/simplejson@1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.6

url pkg:pypi/simplejson@1.7

purl pkg:pypi/simplejson@1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.7

url pkg:pypi/simplejson@1.7.1

purl pkg:pypi/simplejson@1.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.7.1

url pkg:pypi/simplejson@1.7.2

purl pkg:pypi/simplejson@1.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.7.2

url pkg:pypi/simplejson@1.7.3

purl pkg:pypi/simplejson@1.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.7.3

url pkg:pypi/simplejson@1.7.4

purl pkg:pypi/simplejson@1.7.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.7.4

url pkg:pypi/simplejson@1.7.5

purl pkg:pypi/simplejson@1.7.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.7.5

url pkg:pypi/simplejson@1.8

purl pkg:pypi/simplejson@1.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.8

url pkg:pypi/simplejson@1.8.1

purl pkg:pypi/simplejson@1.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.8.1

url pkg:pypi/simplejson@1.9

purl pkg:pypi/simplejson@1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.9

url pkg:pypi/simplejson@1.9.1

purl pkg:pypi/simplejson@1.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.9.1

url pkg:pypi/simplejson@1.9.2

purl pkg:pypi/simplejson@1.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.9.2

url pkg:pypi/simplejson@1.9.3

purl pkg:pypi/simplejson@1.9.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@1.9.3

url pkg:pypi/simplejson@2.0.0

purl pkg:pypi/simplejson@2.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.0

url pkg:pypi/simplejson@2.0.1

purl pkg:pypi/simplejson@2.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.1

url pkg:pypi/simplejson@2.0.2

purl pkg:pypi/simplejson@2.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.2

url pkg:pypi/simplejson@2.0.3

purl pkg:pypi/simplejson@2.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.3

url pkg:pypi/simplejson@2.0.4

purl pkg:pypi/simplejson@2.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.4

url pkg:pypi/simplejson@2.0.5

purl pkg:pypi/simplejson@2.0.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.5

url pkg:pypi/simplejson@2.0.6

purl pkg:pypi/simplejson@2.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.6

url pkg:pypi/simplejson@2.0.7

purl pkg:pypi/simplejson@2.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.7

url pkg:pypi/simplejson@2.0.8

purl pkg:pypi/simplejson@2.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.8

url pkg:pypi/simplejson@2.0.9

purl pkg:pypi/simplejson@2.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.0.9

url pkg:pypi/simplejson@2.1.0rc3

purl pkg:pypi/simplejson@2.1.0rc3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.0rc3

url pkg:pypi/simplejson@2.1.0

purl pkg:pypi/simplejson@2.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.0

url pkg:pypi/simplejson@2.1.1

purl pkg:pypi/simplejson@2.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.1

url pkg:pypi/simplejson@2.1.2

purl pkg:pypi/simplejson@2.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.2

url pkg:pypi/simplejson@2.1.3

purl pkg:pypi/simplejson@2.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.3

url pkg:pypi/simplejson@2.1.4

purl pkg:pypi/simplejson@2.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.4

url pkg:pypi/simplejson@2.1.5

purl pkg:pypi/simplejson@2.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.5

url pkg:pypi/simplejson@2.1.6

purl pkg:pypi/simplejson@2.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.1.6

url pkg:pypi/simplejson@2.2.0

purl pkg:pypi/simplejson@2.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.2.0

url pkg:pypi/simplejson@2.2.1

purl pkg:pypi/simplejson@2.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.2.1

url pkg:pypi/simplejson@2.3.0

purl pkg:pypi/simplejson@2.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.3.0

url pkg:pypi/simplejson@2.3.1

purl pkg:pypi/simplejson@2.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.3.1

url pkg:pypi/simplejson@2.3.2

purl pkg:pypi/simplejson@2.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.3.2

url pkg:pypi/simplejson@2.3.3

purl pkg:pypi/simplejson@2.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.3.3

url pkg:pypi/simplejson@2.4.0

purl pkg:pypi/simplejson@2.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.4.0

url pkg:pypi/simplejson@2.5.0

purl pkg:pypi/simplejson@2.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.5.0

url pkg:pypi/simplejson@2.5.1

purl pkg:pypi/simplejson@2.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.5.1

url pkg:pypi/simplejson@2.5.2

purl pkg:pypi/simplejson@2.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.5.2

url pkg:pypi/simplejson@2.6.0

purl pkg:pypi/simplejson@2.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f5vu-k9rc-27fz

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/simplejson@2.6.0

url pkg:rpm/redhat/python@2.7.5-34?arch=el7

purl pkg:rpm/redhat/python@2.7.5-34?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.7.5-34%3Farch=el7

url pkg:rpm/redhat/python27@1.1-17?arch=el6

purl pkg:rpm/redhat/python27@1.1-17?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27@1.1-17%3Farch=el6

url pkg:rpm/redhat/python27@1.1-20?arch=el7

purl pkg:rpm/redhat/python27@1.1-20?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27@1.1-20%3Farch=el7

url pkg:rpm/redhat/python27-python@2.7.8-3?arch=el7

purl pkg:rpm/redhat/python27-python@2.7.8-3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python@2.7.8-3%3Farch=el7

url pkg:rpm/redhat/python27-python@2.7.8-3?arch=el6

purl pkg:rpm/redhat/python27-python@2.7.8-3?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python@2.7.8-3%3Farch=el6

url pkg:rpm/redhat/python27-python-pip@1.5.6-5?arch=el6

purl pkg:rpm/redhat/python27-python-pip@1.5.6-5?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pip@1.5.6-5%3Farch=el6

url pkg:rpm/redhat/python27-python-pip@1.5.6-5?arch=el7

purl pkg:rpm/redhat/python27-python-pip@1.5.6-5?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pip@1.5.6-5%3Farch=el7

url pkg:rpm/redhat/python27-python-setuptools@0.9.8-3?arch=el6

purl pkg:rpm/redhat/python27-python-setuptools@0.9.8-3?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-setuptools@0.9.8-3%3Farch=el6

url pkg:rpm/redhat/python27-python-setuptools@0.9.8-5?arch=el7

purl pkg:rpm/redhat/python27-python-setuptools@0.9.8-5?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-setuptools@0.9.8-5%3Farch=el7

url pkg:rpm/redhat/python27-python-simplejson@3.2.0-2?arch=el6

purl pkg:rpm/redhat/python27-python-simplejson@3.2.0-2?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-simplejson@3.2.0-2%3Farch=el6

url pkg:rpm/redhat/python27-python-simplejson@3.2.0-3?arch=el7

purl pkg:rpm/redhat/python27-python-simplejson@3.2.0-3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-simplejson@3.2.0-3%3Farch=el7

url pkg:rpm/redhat/python27-python-wheel@0.24.0-2?arch=el7

purl pkg:rpm/redhat/python27-python-wheel@0.24.0-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-wheel@0.24.0-2%3Farch=el7

url pkg:rpm/redhat/python27-python-wheel@0.24.0-2?arch=el6

purl pkg:rpm/redhat/python27-python-wheel@0.24.0-2?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8jfv-cqa8-7yb6

vulnerability	VCID-ez5b-fvw8-hkh3

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-mzd5-dwty-bqhf

vulnerability	VCID-p57a-y8r3-qucc

vulnerability	VCID-w85n-mm5g-5yd1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-wheel@0.24.0-2%3Farch=el6

url pkg:rpm/redhat/python-anyjson@0.3.3-4?arch=el6sat

purl pkg:rpm/redhat/python-anyjson@0.3.3-4?arch=el6sat

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mw1-384y-huc7

vulnerability	VCID-1yu9-avtx-cybv

vulnerability	VCID-77c9-jb1m-6qe2

vulnerability	VCID-7f1h-1fw8-k7c4

vulnerability	VCID-8wen-twwa-8khm

vulnerability	VCID-9gb8-xvrc-aqgb

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-fq2t-c2nv-23ce

vulnerability	VCID-jfqz-9a6e-jff7

vulnerability	VCID-rc65-py17-kuhm

vulnerability	VCID-sqjb-qpyd-p7gn

vulnerability	VCID-tbug-mv5x-uucb

vulnerability	VCID-utxw-251d-gfff

vulnerability	VCID-vhxh-tpay-mbh3

vulnerability	VCID-zkgb-14kz-33dz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-anyjson@0.3.3-4%3Farch=el6sat

url pkg:rpm/redhat/python-simplejson@3.2.0-1?arch=el7sat

purl pkg:rpm/redhat/python-simplejson@3.2.0-1?arch=el7sat

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hff-pbpa-p3e5

vulnerability	VCID-1mw1-384y-huc7

vulnerability	VCID-1xgz-hwng-n3eq

vulnerability	VCID-1yu9-avtx-cybv

vulnerability	VCID-27wt-wmzc-1bc2

vulnerability	VCID-2g54-3acq-pbha

vulnerability	VCID-2y5d-qg7z-2kdg

vulnerability	VCID-31h9-7jrr-9kdt

vulnerability	VCID-31xv-z8c6-a7bg

vulnerability	VCID-3af2-c1m7-3kdr

vulnerability	VCID-3t8t-yt9b-1fce

vulnerability	VCID-3wa1-khqf-x7fv

vulnerability	VCID-3ycr-9smk-uqdc

vulnerability	VCID-3zeq-dyj1-8bdm

vulnerability	VCID-5434-f6g7-8kdw

vulnerability	VCID-63rx-372a-ukby

vulnerability	VCID-6fxc-s6ht-x7ht

vulnerability	VCID-6wxf-ewtr-z3hb

vulnerability	VCID-6xkf-evrx-pyau

vulnerability	VCID-73c1-6ytd-ykf9

vulnerability	VCID-77c9-jb1m-6qe2

vulnerability	VCID-7f1h-1fw8-k7c4

vulnerability	VCID-7v7q-8wa6-hff5

vulnerability	VCID-895a-ydc5-zfg6

vulnerability	VCID-8wen-twwa-8khm

vulnerability	VCID-8xgm-pabz-hkeg

vulnerability	VCID-8zkw-y3yd-yuft

vulnerability	VCID-9gb8-xvrc-aqgb

vulnerability	VCID-9qdt-7p83-4yd8

vulnerability	VCID-9wej-f7zx-pfeq

vulnerability	VCID-a5sk-5grx-eyaf

vulnerability	VCID-a6sp-18av-wya6

vulnerability	VCID-afkn-k8yk-w3dr

vulnerability	VCID-am23-ncy4-27ck

vulnerability	VCID-bdms-nb18-guf9

vulnerability	VCID-bhq3-j6aj-1yae

vulnerability	VCID-bsbd-bsbq-7qdk

vulnerability	VCID-bydt-bkf4-rbh2

vulnerability	VCID-ceub-d4s9-dkcd

vulnerability	VCID-crf9-zn1q-vya8

vulnerability	VCID-d4z1-hdkt-r7g1

vulnerability	VCID-ddqw-aj7g-s7c2

vulnerability	VCID-es1t-7196-4kbb

vulnerability	VCID-f4qa-9fn6-97az

vulnerability	VCID-f5vu-k9rc-27fz

vulnerability	VCID-f73y-mjrg-yfc9

vulnerability	VCID-fq2t-c2nv-23ce

vulnerability	VCID-ftzy-9uny-byfb

vulnerability	VCID-hmcs-7s53-mbft

vulnerability	VCID-jae8-w85w-cyfu

vulnerability	VCID-jau7-gfz8-dkfa

vulnerability	VCID-jfqz-9a6e-jff7

vulnerability	VCID-jr7u-m7gc-pydy

vulnerability	VCID-jua2-2byr-t3cv

vulnerability	VCID-jvp6-892x-nkc7

vulnerability	VCID-ka8b-44hx-mkc5

vulnerability	VCID-kwyu-yq4w-kqe4

vulnerability	VCID-m29v-624x-kkha

vulnerability	VCID-mnkw-23eu-bkgc

vulnerability	VCID-mv1p-yxvp-pbh6

vulnerability	VCID-mv26-fzn6-vycf

vulnerability	VCID-mwus-fmc5-27f2

vulnerability	VCID-nhvk-z1d5-huce

vulnerability	VCID-nmya-eyxd-9ybe

vulnerability	VCID-nugh-hm1r-73c7

vulnerability	VCID-pd7m-bhqf-kkge

vulnerability	VCID-pnt3-1ssq-tqau

vulnerability	VCID-pyr1-73vu-93ej

vulnerability	VCID-q4x5-bxn7-5yht

vulnerability	VCID-qjez-qe32-e3b6

vulnerability	VCID-qr8s-5r61-skhw

vulnerability	VCID-r7tw-km29-4bdp

vulnerability	VCID-rc65-py17-kuhm

vulnerability	VCID-rnuk-n3a6-cbh9

vulnerability	VCID-ruae-hqdg-m7ek

vulnerability	VCID-sg6x-y34w-37bc

vulnerability	VCID-sqjb-qpyd-p7gn

vulnerability	VCID-sw69-1r7d-kkht

vulnerability	VCID-t684-yp58-hkg8

vulnerability	VCID-tbug-mv5x-uucb

vulnerability	VCID-tnen-a68v-9bfk

vulnerability	VCID-u29q-3x9x-73da

vulnerability	VCID-ugqt-zyga-1ydy

vulnerability	VCID-utte-4yve-n7eq

vulnerability	VCID-uygc-h93v-vuh8

vulnerability	VCID-v61q-45uv-uuf7

vulnerability	VCID-v9mt-t1pb-hybk

vulnerability	VCID-va8w-uzhc-x3bz

vulnerability	VCID-vhdm-w6p1-uuh9

vulnerability	VCID-vhxh-tpay-mbh3

vulnerability	VCID-w543-qxxs-f7g7

vulnerability	VCID-wbgc-tuj3-47by

vulnerability	VCID-wnjy-ggeb-eqcn

vulnerability	VCID-wucb-ckae-97aq

vulnerability	VCID-xnyb-nuwm-pkdr

vulnerability	VCID-xnz5-gv2x-17bk

vulnerability	VCID-xzbt-bkdp-8bgh

vulnerability	VCID-yw62-qbkq-9ygq

vulnerability	VCID-z6er-42pm-7ubq

vulnerability	VCID-ze79-6kcg-nfcp

100

vulnerability	VCID-zkgb-14kz-33dz

101

vulnerability	VCID-zx5n-czhy-6qgu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-simplejson@3.2.0-1%3Farch=el7sat

References

reference_url

http://bugs.python.org/issue21529

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://bugs.python.org/issue21529

reference_url

http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.html

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2014-07/msg00015.html

reference_url

http://openwall.com/lists/oss-security/2014/06/24/7

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://openwall.com/lists/oss-security/2014/06/24/7

reference_url

http://rhn.redhat.com/errata/RHSA-2015-1064.html

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2015-1064.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4616.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4616.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-4616

reference_id

reference_type

scores

value	0.00557
scoring_system	epss
scoring_elements	0.68199
published_at	2026-04-16T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68098
published_at	2026-04-01T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.6812
published_at	2026-04-02T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68139
published_at	2026-04-04T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68116
published_at	2026-04-07T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68167
published_at	2026-04-08T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68182
published_at	2026-04-09T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68207
published_at	2026-04-11T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68194
published_at	2026-04-12T12:55:00Z

value	0.00557
scoring_system	epss
scoring_elements	0.68161
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-4616

reference_url

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752395

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=752395

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1112285

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=1112285

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4616
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4616

reference_url

https://github.com/simplejson/simplejson

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/simplejson/simplejson

reference_url

https://hackerone.com/reports/12297

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://hackerone.com/reports/12297

reference_url

https://security.gentoo.org/glsa/201503-10

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.gentoo.org/glsa/201503-10

reference_url

http://www.securityfocus.com/bid/68119

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/68119

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-4616

reference_id

CVE-2014-4616

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2014-4616

reference_url

https://github.com/advisories/GHSA-9772-cwx9-r4cj

reference_id

GHSA-9772-cwx9-r4cj

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-9772-cwx9-r4cj

reference_url	https://access.redhat.com/errata/RHSA-2015:1064
reference_id	RHSA-2015:1064
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1064

reference_url	https://access.redhat.com/errata/RHSA-2015:2101
reference_id	RHSA-2015:2101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2101

reference_url	https://usn.ubuntu.com/2653-1/
reference_id	USN-2653-1
reference_type
scores
url	https://usn.ubuntu.com/2653-1/

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	129
name	Improper Validation of Array Index
description	The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	119
name	Improper Restriction of Operations within the Bounds of a Memory Buffer
description	The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f5vu-k9rc-27fz

Vulnerability Instance