Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-4y32-1vfu-mqb7

Summary

Multiple vulnerabilities have been found in Oracle's JRE and JDK
    software suites allowing remote attackers to remotely execute arbitrary
    code, obtain information, and cause Denial of Service.

Aliases

alias	CVE-2015-2659

Fixed_packages

url	pkg:deb/debian/openjdk-8@8u66-b01-1?distro=sid
purl	pkg:deb/debian/openjdk-8@8u66-b01-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u66-b01-1%3Fdistro=sid

url	pkg:deb/debian/openjdk-8@8u482-ga-1?distro=sid
purl	pkg:deb/debian/openjdk-8@8u482-ga-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u482-ga-1%3Fdistro=sid

url	pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72
purl	pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72

url	pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72
purl	pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72

Affected_packages

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.51-0.b16?arch=el6_6

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.51-0.b16?arch=el6_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4y32-1vfu-mqb7

vulnerability	VCID-5396-g8m1-y3cq

vulnerability	VCID-82f8-r9qy-a3a9

vulnerability	VCID-85a2-7xgd-sydv

vulnerability	VCID-9bfs-vsq6-zbd9

vulnerability	VCID-9wuu-5sx8-kqas

vulnerability	VCID-ajy9-yfsa-5bc5

vulnerability	VCID-bdjz-rqmx-83gz

vulnerability	VCID-ppc6-sk8a-ebf6

vulnerability	VCID-rxz6-u57e-jqdf

vulnerability	VCID-rypa-d47y-q3a6

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-s73e-gcn1-77hr

vulnerability	VCID-smhf-tqrh-1bam

vulnerability	VCID-uwxq-bbum-1yhw

vulnerability	VCID-z8sf-9vvx-uqea

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.51-0.b16%3Farch=el6_6

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.51-1.b16?arch=ael7b_1

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.51-1.b16?arch=ael7b_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4y32-1vfu-mqb7

vulnerability	VCID-5396-g8m1-y3cq

vulnerability	VCID-82f8-r9qy-a3a9

vulnerability	VCID-85a2-7xgd-sydv

vulnerability	VCID-9wuu-5sx8-kqas

vulnerability	VCID-ajy9-yfsa-5bc5

vulnerability	VCID-bdjz-rqmx-83gz

vulnerability	VCID-ppc6-sk8a-ebf6

vulnerability	VCID-rxz6-u57e-jqdf

vulnerability	VCID-rypa-d47y-q3a6

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-s73e-gcn1-77hr

vulnerability	VCID-smhf-tqrh-1bam

vulnerability	VCID-uwxq-bbum-1yhw

vulnerability	VCID-z8sf-9vvx-uqea

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.51-1.b16%3Farch=ael7b_1

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.51-1jpp.2?arch=el7_1

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.51-1jpp.2?arch=el7_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4y32-1vfu-mqb7

vulnerability	VCID-5396-g8m1-y3cq

vulnerability	VCID-82f8-r9qy-a3a9

vulnerability	VCID-85a2-7xgd-sydv

vulnerability	VCID-8b8r-rdb7-7bed

vulnerability	VCID-9wuu-5sx8-kqas

vulnerability	VCID-ajy9-yfsa-5bc5

vulnerability	VCID-b4ha-df1e-kkah

vulnerability	VCID-bdjz-rqmx-83gz

vulnerability	VCID-cwm9-b8a3-skdz

vulnerability	VCID-dkzr-ncga-w3ex

vulnerability	VCID-fhch-983g-ryf2

vulnerability	VCID-jwjm-hptr-a3hy

vulnerability	VCID-ppc6-sk8a-ebf6

vulnerability	VCID-rxz6-u57e-jqdf

vulnerability	VCID-rypa-d47y-q3a6

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-s73e-gcn1-77hr

vulnerability	VCID-smhf-tqrh-1bam

vulnerability	VCID-uwxq-bbum-1yhw

vulnerability	VCID-y1a8-8hmg-w3e3

vulnerability	VCID-yw9c-x1mv-3beb

vulnerability	VCID-z8sf-9vvx-uqea

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.51-1jpp.2%3Farch=el7_1

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.51-1jpp.2?arch=el6_6

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.51-1jpp.2?arch=el6_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4y32-1vfu-mqb7

vulnerability	VCID-5396-g8m1-y3cq

vulnerability	VCID-82f8-r9qy-a3a9

vulnerability	VCID-85a2-7xgd-sydv

vulnerability	VCID-8b8r-rdb7-7bed

vulnerability	VCID-9wuu-5sx8-kqas

vulnerability	VCID-ajy9-yfsa-5bc5

vulnerability	VCID-b4ha-df1e-kkah

vulnerability	VCID-bdjz-rqmx-83gz

vulnerability	VCID-cwm9-b8a3-skdz

vulnerability	VCID-dkzr-ncga-w3ex

vulnerability	VCID-fhch-983g-ryf2

vulnerability	VCID-jwjm-hptr-a3hy

vulnerability	VCID-ppc6-sk8a-ebf6

vulnerability	VCID-rxz6-u57e-jqdf

vulnerability	VCID-rypa-d47y-q3a6

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-s73e-gcn1-77hr

vulnerability	VCID-smhf-tqrh-1bam

vulnerability	VCID-uwxq-bbum-1yhw

vulnerability	VCID-y1a8-8hmg-w3e3

vulnerability	VCID-yw9c-x1mv-3beb

vulnerability	VCID-z8sf-9vvx-uqea

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.51-1jpp.2%3Farch=el6_6

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2659.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2659.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-2659

reference_id

reference_type

scores

value	0.01108
scoring_system	epss
scoring_elements	0.78062
published_at	2026-04-01T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78071
published_at	2026-04-02T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.781
published_at	2026-04-04T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78082
published_at	2026-04-07T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78108
published_at	2026-04-08T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78113
published_at	2026-04-09T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78139
published_at	2026-04-11T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78121
published_at	2026-04-12T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78117
published_at	2026-04-13T12:55:00Z

value	0.01108
scoring_system	epss
scoring_elements	0.78152
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-2659

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1242144
reference_id	1242144
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1242144

reference_url	https://security.gentoo.org/glsa/201603-11
reference_id	GLSA-201603-11
reference_type
scores
url	https://security.gentoo.org/glsa/201603-11

reference_url	https://access.redhat.com/errata/RHSA-2015:1228
reference_id	RHSA-2015:1228
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1228

reference_url	https://access.redhat.com/errata/RHSA-2015:1241
reference_id	RHSA-2015:1241
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1241

Weaknesses

cwe_id	476
name	NULL Pointer Dereference
description	A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4y32-1vfu-mqb7

Vulnerability Instance