Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-bws5-1j6c-g7f3
SummaryThe processControlCommand function in broker/TransportConnection.java in Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of service (shutdown) via a shutdown command.
Aliases
0
alias CVE-2014-3576
1
alias GHSA-3wfj-vh84-732p
Fixed_packages
0
url pkg:deb/debian/activemq@5.6.0%2Bdfsg1-4%2Bdeb8u1?distro=trixie
purl pkg:deb/debian/activemq@5.6.0%2Bdfsg1-4%2Bdeb8u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.6.0%252Bdfsg1-4%252Bdeb8u1%3Fdistro=trixie
1
url pkg:deb/debian/activemq@5.6.0%2Bdfsg1-4%2Bdeb8u3
purl pkg:deb/debian/activemq@5.6.0%2Bdfsg1-4%2Bdeb8u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18k1-3h2s-8uex
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-5kmj-whmc-4bfa
3
vulnerability VCID-6fqa-fzda-x3ej
4
vulnerability VCID-9z4y-wq57-vyaf
5
vulnerability VCID-a3nb-p5p6-zbf7
6
vulnerability VCID-brq9-y937-8faz
7
vulnerability VCID-f5x2-zvxa-yba5
8
vulnerability VCID-fb7w-5fvt-zqe3
9
vulnerability VCID-k4jb-36cp-1fc4
10
vulnerability VCID-nq1y-96n5-eugd
11
vulnerability VCID-pf5e-93cg-guav
12
vulnerability VCID-q6zs-spcv-v7ey
13
vulnerability VCID-uw15-q255-zbe8
14
vulnerability VCID-xttf-9hx8-fbdb
15
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.6.0%252Bdfsg1-4%252Bdeb8u3
2
url pkg:deb/debian/activemq@5.16.1-1?distro=trixie
purl pkg:deb/debian/activemq@5.16.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.16.1-1%3Fdistro=trixie
3
url pkg:deb/debian/activemq@5.17.2%2Bdfsg-2%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/activemq@5.17.2%2Bdfsg-2%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-q6zs-spcv-v7ey
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.17.2%252Bdfsg-2%252Bdeb12u1%3Fdistro=trixie
4
url pkg:deb/debian/activemq@5.17.6%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/activemq@5.17.6%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.17.6%252Bdfsg-2%3Fdistro=trixie
5
url pkg:maven/org.apache.activemq/activemq-client@5.11.0
purl pkg:maven/org.apache.activemq/activemq-client@5.11.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-37ws-cqf7-4udm
1
vulnerability VCID-99na-8tpm-syh1
2
vulnerability VCID-9z4y-wq57-vyaf
3
vulnerability VCID-brq9-y937-8faz
4
vulnerability VCID-f5x2-zvxa-yba5
5
vulnerability VCID-nq1y-96n5-eugd
6
vulnerability VCID-pf5e-93cg-guav
7
vulnerability VCID-q6zs-spcv-v7ey
8
vulnerability VCID-uw15-q255-zbe8
9
vulnerability VCID-vbqu-ak2c-gqez
10
vulnerability VCID-xttf-9hx8-fbdb
11
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.11.0
Affected_packages
0
url pkg:deb/debian/activemq@5.6.0%2Bdfsg-1%2Bdeb7u2
purl pkg:deb/debian/activemq@5.6.0%2Bdfsg-1%2Bdeb7u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18k1-3h2s-8uex
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-4x3q-h212-duaz
3
vulnerability VCID-5kmj-whmc-4bfa
4
vulnerability VCID-6fqa-fzda-x3ej
5
vulnerability VCID-9z4y-wq57-vyaf
6
vulnerability VCID-a3nb-p5p6-zbf7
7
vulnerability VCID-brq9-y937-8faz
8
vulnerability VCID-bws5-1j6c-g7f3
9
vulnerability VCID-f5x2-zvxa-yba5
10
vulnerability VCID-fb7w-5fvt-zqe3
11
vulnerability VCID-gxt8-xcsg-3kes
12
vulnerability VCID-k4jb-36cp-1fc4
13
vulnerability VCID-nq1y-96n5-eugd
14
vulnerability VCID-pf5e-93cg-guav
15
vulnerability VCID-q6zs-spcv-v7ey
16
vulnerability VCID-rkj1-fqpn-cyfk
17
vulnerability VCID-uw15-q255-zbe8
18
vulnerability VCID-xttf-9hx8-fbdb
19
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.6.0%252Bdfsg-1%252Bdeb7u2
1
url pkg:deb/debian/activemq@5.6.0%2Bdfsg1-4
purl pkg:deb/debian/activemq@5.6.0%2Bdfsg1-4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-18k1-3h2s-8uex
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-5kmj-whmc-4bfa
3
vulnerability VCID-6fqa-fzda-x3ej
4
vulnerability VCID-9z4y-wq57-vyaf
5
vulnerability VCID-a3nb-p5p6-zbf7
6
vulnerability VCID-brq9-y937-8faz
7
vulnerability VCID-bws5-1j6c-g7f3
8
vulnerability VCID-f5x2-zvxa-yba5
9
vulnerability VCID-fb7w-5fvt-zqe3
10
vulnerability VCID-k4jb-36cp-1fc4
11
vulnerability VCID-nq1y-96n5-eugd
12
vulnerability VCID-pf5e-93cg-guav
13
vulnerability VCID-q6zs-spcv-v7ey
14
vulnerability VCID-uw15-q255-zbe8
15
vulnerability VCID-xttf-9hx8-fbdb
16
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/activemq@5.6.0%252Bdfsg1-4
2
url pkg:maven/org.apache.activemq/activemq-client@5.8.0
purl pkg:maven/org.apache.activemq/activemq-client@5.8.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3222-6uvd-7be5
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-4x3q-h212-duaz
3
vulnerability VCID-99na-8tpm-syh1
4
vulnerability VCID-9z4y-wq57-vyaf
5
vulnerability VCID-brq9-y937-8faz
6
vulnerability VCID-bws5-1j6c-g7f3
7
vulnerability VCID-f5x2-zvxa-yba5
8
vulnerability VCID-gxt8-xcsg-3kes
9
vulnerability VCID-nq1y-96n5-eugd
10
vulnerability VCID-pf5e-93cg-guav
11
vulnerability VCID-q6zs-spcv-v7ey
12
vulnerability VCID-rkj1-fqpn-cyfk
13
vulnerability VCID-uc2f-713u-skcc
14
vulnerability VCID-uw15-q255-zbe8
15
vulnerability VCID-vbqu-ak2c-gqez
16
vulnerability VCID-xttf-9hx8-fbdb
17
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.8.0
3
url pkg:maven/org.apache.activemq/activemq-client@5.9.0
purl pkg:maven/org.apache.activemq/activemq-client@5.9.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3222-6uvd-7be5
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-4x3q-h212-duaz
3
vulnerability VCID-99na-8tpm-syh1
4
vulnerability VCID-9z4y-wq57-vyaf
5
vulnerability VCID-brq9-y937-8faz
6
vulnerability VCID-bws5-1j6c-g7f3
7
vulnerability VCID-f5x2-zvxa-yba5
8
vulnerability VCID-gxt8-xcsg-3kes
9
vulnerability VCID-nq1y-96n5-eugd
10
vulnerability VCID-pf5e-93cg-guav
11
vulnerability VCID-q6zs-spcv-v7ey
12
vulnerability VCID-rkj1-fqpn-cyfk
13
vulnerability VCID-uw15-q255-zbe8
14
vulnerability VCID-vbqu-ak2c-gqez
15
vulnerability VCID-xttf-9hx8-fbdb
16
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.9.0
4
url pkg:maven/org.apache.activemq/activemq-client@5.9.1
purl pkg:maven/org.apache.activemq/activemq-client@5.9.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3222-6uvd-7be5
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-4x3q-h212-duaz
3
vulnerability VCID-99na-8tpm-syh1
4
vulnerability VCID-9z4y-wq57-vyaf
5
vulnerability VCID-brq9-y937-8faz
6
vulnerability VCID-bws5-1j6c-g7f3
7
vulnerability VCID-f5x2-zvxa-yba5
8
vulnerability VCID-gxt8-xcsg-3kes
9
vulnerability VCID-nq1y-96n5-eugd
10
vulnerability VCID-pf5e-93cg-guav
11
vulnerability VCID-q6zs-spcv-v7ey
12
vulnerability VCID-rkj1-fqpn-cyfk
13
vulnerability VCID-uw15-q255-zbe8
14
vulnerability VCID-vbqu-ak2c-gqez
15
vulnerability VCID-xttf-9hx8-fbdb
16
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.9.1
5
url pkg:maven/org.apache.activemq/activemq-client@5.10.0
purl pkg:maven/org.apache.activemq/activemq-client@5.10.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3222-6uvd-7be5
1
vulnerability VCID-37ws-cqf7-4udm
2
vulnerability VCID-4x3q-h212-duaz
3
vulnerability VCID-99na-8tpm-syh1
4
vulnerability VCID-9z4y-wq57-vyaf
5
vulnerability VCID-brq9-y937-8faz
6
vulnerability VCID-bws5-1j6c-g7f3
7
vulnerability VCID-f5x2-zvxa-yba5
8
vulnerability VCID-gxt8-xcsg-3kes
9
vulnerability VCID-nq1y-96n5-eugd
10
vulnerability VCID-pf5e-93cg-guav
11
vulnerability VCID-q6zs-spcv-v7ey
12
vulnerability VCID-rkj1-fqpn-cyfk
13
vulnerability VCID-uw15-q255-zbe8
14
vulnerability VCID-vbqu-ak2c-gqez
15
vulnerability VCID-xttf-9hx8-fbdb
16
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.10.0
6
url pkg:maven/org.apache.activemq/activemq-client@5.10.1
purl pkg:maven/org.apache.activemq/activemq-client@5.10.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-37ws-cqf7-4udm
1
vulnerability VCID-99na-8tpm-syh1
2
vulnerability VCID-9z4y-wq57-vyaf
3
vulnerability VCID-brq9-y937-8faz
4
vulnerability VCID-bws5-1j6c-g7f3
5
vulnerability VCID-f5x2-zvxa-yba5
6
vulnerability VCID-nq1y-96n5-eugd
7
vulnerability VCID-pf5e-93cg-guav
8
vulnerability VCID-q6zs-spcv-v7ey
9
vulnerability VCID-rkj1-fqpn-cyfk
10
vulnerability VCID-uw15-q255-zbe8
11
vulnerability VCID-vbqu-ak2c-gqez
12
vulnerability VCID-xttf-9hx8-fbdb
13
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.10.1
7
url pkg:maven/org.apache.activemq/activemq-client@5.10.2
purl pkg:maven/org.apache.activemq/activemq-client@5.10.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-37ws-cqf7-4udm
1
vulnerability VCID-99na-8tpm-syh1
2
vulnerability VCID-9z4y-wq57-vyaf
3
vulnerability VCID-brq9-y937-8faz
4
vulnerability VCID-bws5-1j6c-g7f3
5
vulnerability VCID-f5x2-zvxa-yba5
6
vulnerability VCID-nq1y-96n5-eugd
7
vulnerability VCID-pf5e-93cg-guav
8
vulnerability VCID-q6zs-spcv-v7ey
9
vulnerability VCID-uw15-q255-zbe8
10
vulnerability VCID-vbqu-ak2c-gqez
11
vulnerability VCID-xttf-9hx8-fbdb
12
vulnerability VCID-y7sj-71h1-3qhr
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.activemq/activemq-client@5.10.2
References
0
reference_url http://activemq.2283324.n4.nabble.com/About-CVE-2014-3576-tp4699628.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://activemq.2283324.n4.nabble.com/About-CVE-2014-3576-tp4699628.html
1
reference_url http://packetstormsecurity.com/files/134274/Apache-ActiveMQ-5.10.1-Denial-Of-Service.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/134274/Apache-ActiveMQ-5.10.1-Denial-Of-Service.html
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3576
reference_id
reference_type
scores
0
value 0.382
scoring_system epss
scoring_elements 0.97224
published_at 2026-04-13T12:55:00Z
1
value 0.382
scoring_system epss
scoring_elements 0.97223
published_at 2026-04-12T12:55:00Z
2
value 0.382
scoring_system epss
scoring_elements 0.97222
published_at 2026-04-11T12:55:00Z
3
value 0.382
scoring_system epss
scoring_elements 0.97219
published_at 2026-04-09T12:55:00Z
4
value 0.382
scoring_system epss
scoring_elements 0.97218
published_at 2026-04-08T12:55:00Z
5
value 0.382
scoring_system epss
scoring_elements 0.97208
published_at 2026-04-07T12:55:00Z
6
value 0.382
scoring_system epss
scoring_elements 0.97196
published_at 2026-04-01T12:55:00Z
7
value 0.382
scoring_system epss
scoring_elements 0.97237
published_at 2026-04-21T12:55:00Z
8
value 0.382
scoring_system epss
scoring_elements 0.97234
published_at 2026-04-18T12:55:00Z
9
value 0.382
scoring_system epss
scoring_elements 0.97232
published_at 2026-04-16T12:55:00Z
10
value 0.382
scoring_system epss
scoring_elements 0.97207
published_at 2026-04-04T12:55:00Z
11
value 0.382
scoring_system epss
scoring_elements 0.97202
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3576
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3576
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3576
4
reference_url https://github.com/apache/activemq
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/activemq
5
reference_url https://github.com/apache/activemq/commit/00921f2
reference_id
reference_type
scores
url https://github.com/apache/activemq/commit/00921f2
6
reference_url https://github.com/apache/activemq/commit/00921f22ff9a8792d7663ef8fadd4823402a6324
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/activemq/commit/00921f22ff9a8792d7663ef8fadd4823402a6324
7
reference_url https://github.com/apache/activemq/commit/f07e6a53216f9388185ac2b39f366f3bfd6a8a55
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/activemq/commit/f07e6a53216f9388185ac2b39f366f3bfd6a8a55
8
reference_url https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2@%3Ccommits.activemq.apache.org%3E
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2@%3Ccommits.activemq.apache.org%3E
9
reference_url http://www.debian.org/security/2015/dsa-3330
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2015/dsa-3330
10
reference_url http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
11
reference_url http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
12
reference_url http://www.securityfocus.com/archive/1/536862/100/0/threaded
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/archive/1/536862/100/0/threaded
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792857
reference_id 792857
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792857
14
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-3576
reference_id CVE-2014-3576
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-3576
15
reference_url https://github.com/advisories/GHSA-3wfj-vh84-732p
reference_id GHSA-3wfj-vh84-732p
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3wfj-vh84-732p
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 264
name Permissions, Privileges, and Access Controls
description Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 78
name Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
description The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-bws5-1j6c-g7f3