Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-edcu-48sn-ufbj

Summary

Multiple vulnerabilities have been found in Oracle's JRE and JDK
    software suites allowing remote attackers to remotely execute arbitrary
    code, obtain information, and cause Denial of Service.

Aliases

alias	CVE-2015-4868

Fixed_packages

url	pkg:deb/debian/openjdk-8@8u66-b17-1?distro=sid
purl	pkg:deb/debian/openjdk-8@8u66-b17-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u66-b17-1%3Fdistro=sid

url	pkg:deb/debian/openjdk-8@8u482-ga-1?distro=sid
purl	pkg:deb/debian/openjdk-8@8u482-ga-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjdk-8@8u482-ga-1%3Fdistro=sid

url	pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72
purl	pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72

url	pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72
purl	pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72

Affected_packages

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.65-0.b17?arch=el6_7

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.65-0.b17?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1m2k-jt6j-kyam

vulnerability	VCID-5u17-kgsw-akar

vulnerability	VCID-6y1r-9shn-abdp

vulnerability	VCID-7y2q-c6xs-nbex

vulnerability	VCID-a326-kbt5-h7bp

vulnerability	VCID-au4s-5j9w-nybx

vulnerability	VCID-b9wa-u375-xuef

vulnerability	VCID-ds2p-83xe-dfdm

vulnerability	VCID-e4dr-2bah-k7bp

vulnerability	VCID-edcu-48sn-ufbj

vulnerability	VCID-kahp-6ybn-9yax

vulnerability	VCID-knv6-1uv9-yfcy

vulnerability	VCID-nv52-jzcr-37ay

vulnerability	VCID-qb56-zfz8-4bev

vulnerability	VCID-r691-77bt-skhe

vulnerability	VCID-t1yx-brps-4yhe

vulnerability	VCID-u5jr-jf83-gbbb

vulnerability	VCID-vf65-ugfc-nueg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.65-0.b17%3Farch=el6_7

url pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.65-2.b17?arch=ael7b_1

purl pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.65-2.b17?arch=ael7b_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1m2k-jt6j-kyam

vulnerability	VCID-5u17-kgsw-akar

vulnerability	VCID-6y1r-9shn-abdp

vulnerability	VCID-7y2q-c6xs-nbex

vulnerability	VCID-a326-kbt5-h7bp

vulnerability	VCID-au4s-5j9w-nybx

vulnerability	VCID-b9wa-u375-xuef

vulnerability	VCID-ds2p-83xe-dfdm

vulnerability	VCID-e4dr-2bah-k7bp

vulnerability	VCID-edcu-48sn-ufbj

vulnerability	VCID-kahp-6ybn-9yax

vulnerability	VCID-knv6-1uv9-yfcy

vulnerability	VCID-nv52-jzcr-37ay

vulnerability	VCID-qb56-zfz8-4bev

vulnerability	VCID-r691-77bt-skhe

vulnerability	VCID-t1yx-brps-4yhe

vulnerability	VCID-u5jr-jf83-gbbb

vulnerability	VCID-vf65-ugfc-nueg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-openjdk@1:1.8.0.65-2.b17%3Farch=ael7b_1

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el6_7

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1m2k-jt6j-kyam

vulnerability	VCID-5u17-kgsw-akar

vulnerability	VCID-6and-3vws-p3hu

vulnerability	VCID-6y1r-9shn-abdp

vulnerability	VCID-7y2q-c6xs-nbex

vulnerability	VCID-9gpf-rkqa-2fb4

vulnerability	VCID-a326-kbt5-h7bp

vulnerability	VCID-au4s-5j9w-nybx

vulnerability	VCID-b9wa-u375-xuef

vulnerability	VCID-d9gp-4hm3-h7dc

vulnerability	VCID-ds2p-83xe-dfdm

vulnerability	VCID-e4dr-2bah-k7bp

vulnerability	VCID-edcu-48sn-ufbj

vulnerability	VCID-j8w9-x9f9-hfec

vulnerability	VCID-kahp-6ybn-9yax

vulnerability	VCID-knv6-1uv9-yfcy

vulnerability	VCID-nv52-jzcr-37ay

vulnerability	VCID-qb56-zfz8-4bev

vulnerability	VCID-r691-77bt-skhe

vulnerability	VCID-t1yx-brps-4yhe

vulnerability	VCID-tet1-snjs-tbfb

vulnerability	VCID-u4vm-t9jm-2yfv

vulnerability	VCID-u5jr-jf83-gbbb

vulnerability	VCID-vf65-ugfc-nueg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3%3Farch=el6_7

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el7_1

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el7_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1m2k-jt6j-kyam

vulnerability	VCID-5u17-kgsw-akar

vulnerability	VCID-6and-3vws-p3hu

vulnerability	VCID-6y1r-9shn-abdp

vulnerability	VCID-7y2q-c6xs-nbex

vulnerability	VCID-9gpf-rkqa-2fb4

vulnerability	VCID-a326-kbt5-h7bp

vulnerability	VCID-au4s-5j9w-nybx

vulnerability	VCID-b9wa-u375-xuef

vulnerability	VCID-d9gp-4hm3-h7dc

vulnerability	VCID-ds2p-83xe-dfdm

vulnerability	VCID-e4dr-2bah-k7bp

vulnerability	VCID-edcu-48sn-ufbj

vulnerability	VCID-j8w9-x9f9-hfec

vulnerability	VCID-kahp-6ybn-9yax

vulnerability	VCID-knv6-1uv9-yfcy

vulnerability	VCID-nv52-jzcr-37ay

vulnerability	VCID-qb56-zfz8-4bev

vulnerability	VCID-r691-77bt-skhe

vulnerability	VCID-t1yx-brps-4yhe

vulnerability	VCID-tet1-snjs-tbfb

vulnerability	VCID-u4vm-t9jm-2yfv

vulnerability	VCID-u5jr-jf83-gbbb

vulnerability	VCID-vf65-ugfc-nueg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3%3Farch=el7_1

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1919.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1919.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1926.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1926.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4868.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4868.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-4868

reference_id

reference_type

scores

value	0.03897
scoring_system	epss
scoring_elements	0.88287
published_at	2026-04-18T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88219
published_at	2026-04-01T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88227
published_at	2026-04-02T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88242
published_at	2026-04-04T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88247
published_at	2026-04-07T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88266
published_at	2026-04-08T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88272
published_at	2026-04-09T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88284
published_at	2026-04-11T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88276
published_at	2026-04-12T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88275
published_at	2026-04-13T12:55:00Z

value	0.03897
scoring_system	epss
scoring_elements	0.88289
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-4868

reference_url	https://kc.mcafee.com/corporate/index?page=content&id=SB10141
reference_id
reference_type
scores
url	https://kc.mcafee.com/corporate/index?page=content&id=SB10141

reference_url	http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

reference_url	http://www.securityfocus.com/bid/77225
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/77225

reference_url	http://www.securitytracker.com/id/1033884
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1033884

reference_url	http://www.ubuntu.com/usn/USN-2784-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2784-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1273328
reference_id	1273328
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1273328

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update51::::::
reference_id	cpe:2.3:a:oracle:jdk:1.8.0:update51::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update51::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update60::::::
reference_id	cpe:2.3:a:oracle:jdk:1.8.0:update60::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update60::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update_51::::::
reference_id	cpe:2.3:a:oracle:jre:1.8.0:update_51::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update_51::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update_60::::::
reference_id	cpe:2.3:a:oracle:jre:1.8.0:update_60::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update_60::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-4868

reference_id

CVE-2015-4868

reference_type

scores

value	7.6
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2015-4868

reference_url	https://security.gentoo.org/glsa/201603-11
reference_id	GLSA-201603-11
reference_type
scores
url	https://security.gentoo.org/glsa/201603-11

reference_url	https://access.redhat.com/errata/RHSA-2015:1919
reference_id	RHSA-2015:1919
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1919

reference_url	https://access.redhat.com/errata/RHSA-2015:1926
reference_id	RHSA-2015:1926
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1926

reference_url	https://usn.ubuntu.com/2784-1/
reference_id	USN-2784-1
reference_type
scores
url	https://usn.ubuntu.com/2784-1/

Weaknesses

Exploits

Severity_range_score 7.6 - 7.6

Exploitability 0.5

Weighted_severity 6.8

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-edcu-48sn-ufbj

Vulnerability Instance