Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/41562?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/41562?format=api", "vulnerability_id": "VCID-ttbc-7ys4-wfdw", "summary": "Integer Overflow or Wraparound\nIn opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv.", "aliases": [ { "alias": "CVE-2017-12863" }, { "alias": "GHSA-wq8f-wvqp-xvvm" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/120513?format=api", "purl": "pkg:deb/debian/opencv@3.2.0%2Bdfsg-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@3.2.0%252Bdfsg-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/516676?format=api", "purl": "pkg:deb/debian/opencv@3.2.0%2Bdfsg-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-jypn-sttp-tkgm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@3.2.0%252Bdfsg-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/120514?format=api", "purl": "pkg:deb/debian/opencv@4.5.1%2Bdfsg-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@4.5.1%252Bdfsg-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/120512?format=api", "purl": "pkg:deb/debian/opencv@4.6.0%2Bdfsg-12?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@4.6.0%252Bdfsg-12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/120516?format=api", "purl": "pkg:deb/debian/opencv@4.10.0%2Bdfsg-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@4.10.0%252Bdfsg-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/120515?format=api", "purl": "pkg:deb/debian/opencv@4.10.0%2Bdfsg-7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@4.10.0%252Bdfsg-7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/194773?format=api", "purl": "pkg:ebuild/media-libs/opencv@2.4.13-r3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/opencv@2.4.13-r3" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/516668?format=api", "purl": "pkg:deb/debian/opencv@0.9.5-10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@0.9.5-10" }, { "url": "http://public2.vulnerablecode.io/api/packages/516669?format=api", "purl": "pkg:deb/debian/opencv@0.9.7-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@0.9.7-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/516670?format=api", "purl": "pkg:deb/debian/opencv@1.0.0-6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@1.0.0-6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/516671?format=api", "purl": "pkg:deb/debian/opencv@2.1.0-3%2Bsqueeze1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@2.1.0-3%252Bsqueeze1" }, { "url": "http://public2.vulnerablecode.io/api/packages/516672?format=api", "purl": "pkg:deb/debian/opencv@2.3.1-11%2Bdeb7u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@2.3.1-11%252Bdeb7u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/516673?format=api", "purl": "pkg:deb/debian/opencv@2.4.9.1%2Bdfsg-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@2.4.9.1%252Bdfsg-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/516674?format=api", "purl": "pkg:deb/debian/opencv@2.4.9.1%2Bdfsg-1%2Bdeb8u1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@2.4.9.1%252Bdfsg-1%252Bdeb8u1" }, { "url": "http://public2.vulnerablecode.io/api/packages/516675?format=api", "purl": "pkg:deb/debian/opencv@2.4.9.1%2Bdfsg1-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1bk1-pc9v-ykgv" }, { "vulnerability": "VCID-1qhy-7pnz-aqga" }, { "vulnerability": "VCID-21n5-7ukh-gyfr" }, { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-25vm-cytf-bqb1" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-3zc6-3229-wfcc" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-7r2a-ega4-cbbh" }, { "vulnerability": "VCID-8uwy-v2wq-n3cy" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-dv7w-p358-1qda" }, { "vulnerability": "VCID-dw95-fpkf-pfew" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-fjy7-r2wm-n3b4" }, { "vulnerability": "VCID-j87y-pgt8-xbat" }, { "vulnerability": "VCID-jwwm-5zrf-a3af" }, { "vulnerability": "VCID-jypn-sttp-tkgm" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjd6-1et5-vqer" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/opencv@2.4.9.1%252Bdfsg1-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/50894?format=api", "purl": "pkg:pypi/opencv-contrib-python@3.3.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-58aj-jc6y-dqcg" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-mkrd-7czn-b3bz" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/opencv-contrib-python@3.3.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/50954?format=api", "purl": "pkg:pypi/opencv-python@3.3.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-22su-dw4m-pfe6" }, { "vulnerability": "VCID-2dwz-2v5y-4qeb" }, { "vulnerability": "VCID-4t6y-22xf-3ueq" }, { "vulnerability": "VCID-73g1-r39e-z7ez" }, { "vulnerability": "VCID-b7m4-s1rg-wqe7" }, { "vulnerability": "VCID-e6gy-hka8-9bae" }, { "vulnerability": "VCID-jzve-9vvd-mued" }, { "vulnerability": "VCID-m3rr-ppwn-5kd8" }, { "vulnerability": "VCID-mkrd-7czn-b3bz" }, { "vulnerability": "VCID-qz2a-2d4y-y7hq" }, { "vulnerability": "VCID-s11e-t19f-kfe4" }, { "vulnerability": "VCID-syem-z8g2-n7h2" }, { "vulnerability": "VCID-ttbc-7ys4-wfdw" }, { "vulnerability": "VCID-vtbm-x7bk-tqgv" }, { "vulnerability": "VCID-w461-q9h5-pfdg" }, { "vulnerability": "VCID-yjsn-xjss-wqe3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:pypi/opencv-python@3.3.0.9" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12863.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12863.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12863", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0167", "scoring_system": "epss", "scoring_elements": "0.8246", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0167", "scoring_system": "epss", "scoring_elements": "0.82489", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12863" }, { "reference_url": "https://github.com/opencv/opencv/issues/9371", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/opencv/opencv/issues/9371" }, { "reference_url": "https://github.com/opencv/opencv/pull/9376", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/opencv/opencv/pull/9376" }, { "reference_url": "https://github.com/opencv/opencv-python", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/opencv/opencv-python" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00030.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/10/msg00028.html" }, { "reference_url": "https://security.gentoo.org/glsa/201712-02", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.gentoo.org/glsa/201712-02" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483696", "reference_id": "1483696", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483696" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=875344", "reference_id": "875344", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=875344" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12863", "reference_id": "CVE-2017-12863", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-12863" }, { "reference_url": "https://github.com/advisories/GHSA-wq8f-wvqp-xvvm", "reference_id": "GHSA-wq8f-wvqp-xvvm", "reference_type": "", "scores": [], "url": "https://github.com/advisories/GHSA-wq8f-wvqp-xvvm" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 190, "name": "Integer Overflow or Wraparound", "description": "The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control." }, { "cwe_id": 78, "name": "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "description": "The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "3.3 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ttbc-7ys4-wfdw" }