Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-8mwn-2k1d-rkfz

Summary

Multiple vulnerabilities have been found in RSYSLOG, allowing
    attackers to cause Denial of Service.

Aliases

alias	CVE-2014-3634

Fixed_packages

url	pkg:deb/debian/inetutils@2:1.9.2.39.3a460-1?distro=trixie
purl	pkg:deb/debian/inetutils@2:1.9.2.39.3a460-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.9.2.39.3a460-1%3Fdistro=trixie

url pkg:deb/debian/inetutils@2:1.9.2.39.3a460-3

purl pkg:deb/debian/inetutils@2:1.9.2.39.3a460-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-8491-mjp3-bqbv

vulnerability	VCID-bn6y-snuj-gbdy

vulnerability	VCID-eq37-ztb2-nfb8

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-m459-kwuf-2kd4

vulnerability	VCID-qg9t-d2pk-yub6

vulnerability	VCID-um87-6yps-cbfk

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.9.2.39.3a460-3

url pkg:deb/debian/inetutils@2:2.0-1%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/inetutils@2:2.0-1%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:2.0-1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/inetutils@2:2.4-2%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/inetutils@2:2.4-2%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:2.4-2%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/inetutils@2:2.6-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/inetutils@2:2.6-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:2.6-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/inetutils@2:2.7-5?distro=trixie
purl	pkg:deb/debian/inetutils@2:2.7-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:2.7-5%3Fdistro=trixie

url pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2

purl pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@5.8.11-3%252Bdeb7u2

url	pkg:deb/debian/rsyslog@8.4.1-1?distro=trixie
purl	pkg:deb/debian/rsyslog@8.4.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.4.1-1%3Fdistro=trixie

url pkg:deb/debian/rsyslog@8.4.2-1

purl pkg:deb/debian/rsyslog@8.4.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.4.2-1

url	pkg:deb/debian/rsyslog@8.2102.0-2%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/rsyslog@8.2102.0-2%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2102.0-2%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/rsyslog@8.2302.0-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/rsyslog@8.2302.0-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2302.0-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/rsyslog@8.2504.0-1?distro=trixie
purl	pkg:deb/debian/rsyslog@8.2504.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2504.0-1%3Fdistro=trixie

url	pkg:deb/debian/rsyslog@8.2512.0-3?distro=trixie
purl	pkg:deb/debian/rsyslog@8.2512.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2512.0-3%3Fdistro=trixie

url	pkg:deb/debian/rsyslog@8.2602.0-1?distro=trixie
purl	pkg:deb/debian/rsyslog@8.2602.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@8.2602.0-1%3Fdistro=trixie

url	pkg:ebuild/app-admin/rsyslog@8.4.2
purl	pkg:ebuild/app-admin/rsyslog@8.4.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/app-admin/rsyslog@8.4.2

Affected_packages

url pkg:deb/debian/inetutils@2:1.4.2%2B20040207-4

purl pkg:deb/debian/inetutils@2:1.4.2%2B20040207-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-8491-mjp3-bqbv

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-bn6y-snuj-gbdy

vulnerability	VCID-eq37-ztb2-nfb8

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-m459-kwuf-2kd4

vulnerability	VCID-nes3-sr2e-yueb

vulnerability	VCID-qg9t-d2pk-yub6

vulnerability	VCID-um87-6yps-cbfk

vulnerability	VCID-unvx-tsxw-abbw

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.4.2%252B20040207-4

url pkg:deb/debian/inetutils@2:1.5.dfsg.1-2

purl pkg:deb/debian/inetutils@2:1.5.dfsg.1-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-8491-mjp3-bqbv

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-bn6y-snuj-gbdy

vulnerability	VCID-eq37-ztb2-nfb8

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-m459-kwuf-2kd4

vulnerability	VCID-nes3-sr2e-yueb

vulnerability	VCID-qg9t-d2pk-yub6

vulnerability	VCID-um87-6yps-cbfk

vulnerability	VCID-unvx-tsxw-abbw

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.5.dfsg.1-2

url pkg:deb/debian/inetutils@2:1.5.dfsg.1-9%2Blenny1

purl pkg:deb/debian/inetutils@2:1.5.dfsg.1-9%2Blenny1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-8491-mjp3-bqbv

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-bn6y-snuj-gbdy

vulnerability	VCID-eq37-ztb2-nfb8

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-m459-kwuf-2kd4

vulnerability	VCID-nes3-sr2e-yueb

vulnerability	VCID-qg9t-d2pk-yub6

vulnerability	VCID-um87-6yps-cbfk

vulnerability	VCID-unvx-tsxw-abbw

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.5.dfsg.1-9%252Blenny1

url pkg:deb/debian/inetutils@2:1.6-3.1%2Bsqueeze2

purl pkg:deb/debian/inetutils@2:1.6-3.1%2Bsqueeze2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-8491-mjp3-bqbv

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-bn6y-snuj-gbdy

vulnerability	VCID-eq37-ztb2-nfb8

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-m459-kwuf-2kd4

vulnerability	VCID-nes3-sr2e-yueb

vulnerability	VCID-qg9t-d2pk-yub6

vulnerability	VCID-um87-6yps-cbfk

vulnerability	VCID-unvx-tsxw-abbw

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.6-3.1%252Bsqueeze2

url pkg:deb/debian/inetutils@2:1.9-2

purl pkg:deb/debian/inetutils@2:1.9-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6xfm-qpgd-ebaw

vulnerability	VCID-8491-mjp3-bqbv

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-bn6y-snuj-gbdy

vulnerability	VCID-eq37-ztb2-nfb8

vulnerability	VCID-hm61-cd18-hycu

vulnerability	VCID-m459-kwuf-2kd4

vulnerability	VCID-qg9t-d2pk-yub6

vulnerability	VCID-um87-6yps-cbfk

vulnerability	VCID-wfv6-euzm-7bhc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/inetutils@2:1.9-2

url pkg:deb/debian/rsyslog@3.18.6-4

purl pkg:deb/debian/rsyslog@3.18.6-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-4vr2-rn4g-bbep

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-cbts-ng32-67e7

vulnerability	VCID-cq52-ykyq-qug5

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-gg4f-gzty-y7e1

vulnerability	VCID-pgy6-vbk7-hkg8

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@3.18.6-4

url pkg:deb/debian/rsyslog@4.6.4-2

purl pkg:deb/debian/rsyslog@4.6.4-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-4vr2-rn4g-bbep

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-cbts-ng32-67e7

vulnerability	VCID-cq52-ykyq-qug5

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-gg4f-gzty-y7e1

vulnerability	VCID-pgy6-vbk7-hkg8

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@4.6.4-2

url pkg:deb/debian/rsyslog@4.6.4-2%2Bdeb6u2

purl pkg:deb/debian/rsyslog@4.6.4-2%2Bdeb6u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-4vr2-rn4g-bbep

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-cbts-ng32-67e7

vulnerability	VCID-cq52-ykyq-qug5

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-gg4f-gzty-y7e1

vulnerability	VCID-pgy6-vbk7-hkg8

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@4.6.4-2%252Bdeb6u2

url pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2

purl pkg:deb/debian/rsyslog@5.8.11-3%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@5.8.11-3%252Bdeb7u2

url pkg:deb/debian/rsyslog@7.4.8-1~bpo70%2B1

purl pkg:deb/debian/rsyslog@7.4.8-1~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@7.4.8-1~bpo70%252B1

url pkg:deb/debian/rsyslog@7.6.3-2~bpo70%2B1

purl pkg:deb/debian/rsyslog@7.6.3-2~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2vuy-ga2a-2ke4

vulnerability	VCID-7eg3-vksv-9bga

vulnerability	VCID-8mwn-2k1d-rkfz

vulnerability	VCID-96hb-thus-r3f2

vulnerability	VCID-g5b3-53m2-yug1

vulnerability	VCID-qh6a-u11q-g3gp

vulnerability	VCID-s9gb-bjme-gkaf

vulnerability	VCID-ybfq-unp3-dbav

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/rsyslog@7.6.3-2~bpo70%252B1

url pkg:rpm/redhat/rsyslog@5.8.10-9?arch=el6_6

purl pkg:rpm/redhat/rsyslog@5.8.10-9?arch=el6_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8mwn-2k1d-rkfz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rsyslog@5.8.10-9%3Farch=el6_6

url pkg:rpm/redhat/rsyslog@7.4.7-7?arch=el7_0

purl pkg:rpm/redhat/rsyslog@7.4.7-7?arch=el7_0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8mwn-2k1d-rkfz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rsyslog@7.4.7-7%3Farch=el7_0

url pkg:rpm/redhat/rsyslog5@5.8.12-5?arch=el5_11

purl pkg:rpm/redhat/rsyslog5@5.8.12-5?arch=el5_11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8mwn-2k1d-rkfz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rsyslog5@5.8.12-5%3Farch=el5_11

url pkg:rpm/redhat/rsyslog7@7.4.10-3?arch=el6_6

purl pkg:rpm/redhat/rsyslog7@7.4.10-3?arch=el6_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8mwn-2k1d-rkfz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rsyslog7@7.4.10-3%3Farch=el6_6

References

reference_url	http://advisories.mageia.org/MGASA-2014-0411.html
reference_id
reference_type
scores
url	http://advisories.mageia.org/MGASA-2014-0411.html

reference_url	http://linux.oracle.com/errata/ELSA-2014-1654
reference_id
reference_type
scores
url	http://linux.oracle.com/errata/ELSA-2014-1654

reference_url	http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00005.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00005.html

reference_url	http://lists.opensuse.org/opensuse-updates/2014-10/msg00020.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2014-10/msg00020.html

reference_url	http://lists.opensuse.org/opensuse-updates/2014-10/msg00021.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2014-10/msg00021.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1397.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1397.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1654.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1654.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1671.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1671.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3634.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3634.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3634

reference_id

reference_type

scores

value	0.29383
scoring_system	epss
scoring_elements	0.96611
published_at	2026-04-18T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96568
published_at	2026-04-01T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96578
published_at	2026-04-02T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96583
published_at	2026-04-04T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96586
published_at	2026-04-07T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96594
published_at	2026-04-08T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96596
published_at	2026-04-09T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96598
published_at	2026-04-12T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.966
published_at	2026-04-13T12:55:00Z

value	0.29383
scoring_system	epss
scoring_elements	0.96606
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3634

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3634
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3634

reference_url	http://secunia.com/advisories/61494
reference_id
reference_type
scores
url	http://secunia.com/advisories/61494

reference_url	http://secunia.com/advisories/61720
reference_id
reference_type
scores
url	http://secunia.com/advisories/61720

reference_url	http://secunia.com/advisories/61930
reference_id
reference_type
scores
url	http://secunia.com/advisories/61930

reference_url	http://www.debian.org/security/2014/dsa-3040
reference_id
reference_type
scores
url	http://www.debian.org/security/2014/dsa-3040

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:130
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:130

reference_url	http://www.openwall.com/lists/oss-security/2014/09/30/15
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2014/09/30/15

reference_url	http://www.openwall.com/lists/oss-security/2014/10/03/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2014/10/03/1

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html

reference_url	http://www.rsyslog.com/remote-syslog-pri-vulnerability/
reference_id
reference_type
scores
url	http://www.rsyslog.com/remote-syslog-pri-vulnerability/

reference_url	http://www.ubuntu.com/usn/USN-2381-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2381-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1142373
reference_id	1142373
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1142373

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog::::::::
reference_id	cpe:2.3:a:rsyslog:rsyslog::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.0:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.1:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.2:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.3:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.4:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.5:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.6:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.1.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.1.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.0:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.1:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.2:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.2.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.3:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.2.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.2.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.0:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.1:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.3.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.2:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.3.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.3:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.3.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.4:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.3.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.5:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.3.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.3.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.4.0:::::::*
reference_id	cpe:2.3:a:rsyslog:rsyslog:8.4.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rsyslog:rsyslog:8.4.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd::::::::
reference_id	cpe:2.3:a:sysklogd_project:sysklogd::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.1:::::::*
reference_id	cpe:2.3:a:sysklogd_project:sysklogd:1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.2:::::::*
reference_id	cpe:2.3:a:sysklogd_project:sysklogd:1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.3:::::::*
reference_id	cpe:2.3:a:sysklogd_project:sysklogd:1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.4:::::::*
reference_id	cpe:2.3:a:sysklogd_project:sysklogd:1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.4.1:::::::*
reference_id	cpe:2.3:a:sysklogd_project:sysklogd:1.4.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sysklogd_project:sysklogd:1.4.1:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-3634

reference_id

CVE-2014-3634

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2014-3634

reference_url	https://security.gentoo.org/glsa/201412-35
reference_id	GLSA-201412-35
reference_type
scores
url	https://security.gentoo.org/glsa/201412-35

reference_url	https://access.redhat.com/errata/RHSA-2014:1397
reference_id	RHSA-2014:1397
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1397

reference_url	https://access.redhat.com/errata/RHSA-2014:1654
reference_id	RHSA-2014:1654
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1654

reference_url	https://access.redhat.com/errata/RHSA-2014:1671
reference_id	RHSA-2014:1671
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1671

reference_url	https://usn.ubuntu.com/2381-1/
reference_id	USN-2381-1
reference_type
scores
url	https://usn.ubuntu.com/2381-1/

Weaknesses

cwe_id	129
name	Improper Validation of Array Index
description	The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

cwe_id	119
name	Improper Restriction of Operations within the Bounds of a Memory Buffer
description	The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Exploits

Severity_range_score 7.5 - 7.5

Exploitability 0.5

Weighted_severity 6.8

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8mwn-2k1d-rkfz

Vulnerability Instance