Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-uzf7-rgm3-ykap
Summary
Multiple vulnerabilities have been found in JasPer, the worst of
    which could result in a Denial of Service condition.
Aliases
0
alias CVE-2017-5505
Fixed_packages
0
url pkg:alpm/archlinux/jasper@2.0.14-1
purl pkg:alpm/archlinux/jasper@2.0.14-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-g8fd-dzfe-wqck
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/jasper@2.0.14-1
Affected_packages
0
url pkg:alpm/archlinux/jasper@2.0.13-2
purl pkg:alpm/archlinux/jasper@2.0.13-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-411s-m5hf-13ea
1
vulnerability VCID-43tr-aux5-xfg4
2
vulnerability VCID-87n8-xsx9-bqfx
3
vulnerability VCID-mf2h-8nqn-73h9
4
vulnerability VCID-unhd-qymu-j7a6
5
vulnerability VCID-uzf7-rgm3-ykap
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/jasper@2.0.13-2
1
url pkg:ebuild/media-libs/jasper@2.0.16
purl pkg:ebuild/media-libs/jasper@2.0.16
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14uc-suy4-vkav
1
vulnerability VCID-411s-m5hf-13ea
2
vulnerability VCID-43tr-aux5-xfg4
3
vulnerability VCID-4uee-ywf5-77fg
4
vulnerability VCID-71h8-gwku-nyba
5
vulnerability VCID-8kug-2mr4-n7ap
6
vulnerability VCID-bvgt-kswn-s3gu
7
vulnerability VCID-cuwt-vtwk-9qfc
8
vulnerability VCID-d55p-qzv3-abba
9
vulnerability VCID-ddwa-ag8b-5kd3
10
vulnerability VCID-fs57-6w4t-7khr
11
vulnerability VCID-g8fd-dzfe-wqck
12
vulnerability VCID-gqb1-mvjf-hfch
13
vulnerability VCID-j7jh-x7p4-tbfg
14
vulnerability VCID-mf2h-8nqn-73h9
15
vulnerability VCID-mpy2-q1kz-mqbd
16
vulnerability VCID-pzmn-b9g7-hqfy
17
vulnerability VCID-u84u-4sre-sqez
18
vulnerability VCID-unhd-qymu-j7a6
19
vulnerability VCID-uzf7-rgm3-ykap
20
vulnerability VCID-wjhs-wew4-3yhs
21
vulnerability VCID-y4g3-1zev-nyda
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/jasper@2.0.16
References
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00082.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00082.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00085.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00085.html
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5505.json
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5505.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-5505
reference_id
reference_type
scores
0
value 0.00404
scoring_system epss
scoring_elements 0.60833
published_at 2026-04-01T12:55:00Z
1
value 0.00404
scoring_system epss
scoring_elements 0.60976
published_at 2026-04-24T12:55:00Z
2
value 0.00404
scoring_system epss
scoring_elements 0.60953
published_at 2026-04-13T12:55:00Z
3
value 0.00404
scoring_system epss
scoring_elements 0.60995
published_at 2026-04-16T12:55:00Z
4
value 0.00404
scoring_system epss
scoring_elements 0.61001
published_at 2026-04-18T12:55:00Z
5
value 0.00404
scoring_system epss
scoring_elements 0.60987
published_at 2026-04-21T12:55:00Z
6
value 0.00404
scoring_system epss
scoring_elements 0.60906
published_at 2026-04-02T12:55:00Z
7
value 0.00404
scoring_system epss
scoring_elements 0.60935
published_at 2026-04-04T12:55:00Z
8
value 0.00404
scoring_system epss
scoring_elements 0.60899
published_at 2026-04-07T12:55:00Z
9
value 0.00404
scoring_system epss
scoring_elements 0.60948
published_at 2026-04-08T12:55:00Z
10
value 0.00404
scoring_system epss
scoring_elements 0.60965
published_at 2026-04-09T12:55:00Z
11
value 0.00404
scoring_system epss
scoring_elements 0.60986
published_at 2026-04-11T12:55:00Z
12
value 0.00404
scoring_system epss
scoring_elements 0.60972
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-5505
4
reference_url https://blogs.gentoo.org/ago/2017/01/16/jasper-invalid-memory-read-in-jas_matrix_asl-jas_seq-c/
reference_id
reference_type
scores
url https://blogs.gentoo.org/ago/2017/01/16/jasper-invalid-memory-read-in-jas_matrix_asl-jas_seq-c/
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url http://www.openwall.com/lists/oss-security/2017/01/16/5
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/01/16/5
7
reference_url http://www.openwall.com/lists/oss-security/2017/01/17/4
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2017/01/17/4
8
reference_url http://www.securityfocus.com/bid/95687
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/95687
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1416068
reference_id 1416068
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1416068
10
reference_url https://security.archlinux.org/AVG-206
reference_id AVG-206
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-206
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jasper_project:jasper:1.900.27:*:*:*:*:*:*:*
reference_id cpe:2.3:a:jasper_project:jasper:1.900.27:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jasper_project:jasper:1.900.27:*:*:*:*:*:*:*
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-5505
reference_id CVE-2017-5505
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2017-5505
13
reference_url https://security.gentoo.org/glsa/201908-03
reference_id GLSA-201908-03
reference_type
scores
url https://security.gentoo.org/glsa/201908-03
Weaknesses
0
cwe_id 125
name Out-of-bounds Read
description The product reads data past the end, or before the beginning, of the intended buffer.
1
cwe_id 119
name Improper Restriction of Operations within the Bounds of a Memory Buffer
description The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
Exploits
Severity_range_score4.3 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-uzf7-rgm3-ykap