Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-jqq7-zaqr-6bap

Summary

Multiple vulnerabilities have been found in Firefox, Thunderbird,
    Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with
    the worst of which may allow remote execution of arbitrary code.

Aliases

alias	CVE-2015-4481

Fixed_packages

url	pkg:ebuild/dev-libs/nspr@4.12
purl	pkg:ebuild/dev-libs/nspr@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nspr@4.12

url	pkg:ebuild/dev-libs/nss@3.22.2
purl	pkg:ebuild/dev-libs/nss@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@3.22.2

url	pkg:ebuild/dev-libs/nss@4.12
purl	pkg:ebuild/dev-libs/nss@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@4.12

url	pkg:ebuild/mail-client/thunderbird@3.22.2
purl	pkg:ebuild/mail-client/thunderbird@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@3.22.2

url	pkg:ebuild/mail-client/thunderbird@4.12
purl	pkg:ebuild/mail-client/thunderbird@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@4.12

url	pkg:ebuild/mail-client/thunderbird@38.7.0
purl	pkg:ebuild/mail-client/thunderbird@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@38.7.0

url	pkg:ebuild/mail-client/thunderbird-bin@3.22.2
purl	pkg:ebuild/mail-client/thunderbird-bin@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@3.22.2

url	pkg:ebuild/mail-client/thunderbird-bin@4.12
purl	pkg:ebuild/mail-client/thunderbird-bin@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@4.12

url	pkg:ebuild/mail-client/thunderbird-bin@38.7.0
purl	pkg:ebuild/mail-client/thunderbird-bin@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@38.7.0

url	pkg:ebuild/www-client/firefox@3.22.2
purl	pkg:ebuild/www-client/firefox@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@3.22.2

url	pkg:ebuild/www-client/firefox@4.12
purl	pkg:ebuild/www-client/firefox@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@4.12

url	pkg:ebuild/www-client/firefox@38.7.0
purl	pkg:ebuild/www-client/firefox@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@38.7.0

url	pkg:ebuild/www-client/firefox-bin@3.22.2
purl	pkg:ebuild/www-client/firefox-bin@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@3.22.2

url	pkg:ebuild/www-client/firefox-bin@4.12
purl	pkg:ebuild/www-client/firefox-bin@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@4.12

url	pkg:ebuild/www-client/firefox-bin@38.7.0
purl	pkg:ebuild/www-client/firefox-bin@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@38.7.0

url	pkg:mozilla/Firefox@40.0.0
purl	pkg:mozilla/Firefox@40.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@40.0.0

url	pkg:mozilla/Firefox%20ESR@38.2.0
purl	pkg:mozilla/Firefox%20ESR@38.2.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@38.2.0

url	pkg:mozilla/SeaMonkey@2.35.0
purl	pkg:mozilla/SeaMonkey@2.35.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.35.0

url	pkg:mozilla/Thunderbird@38.2.0
purl	pkg:mozilla/Thunderbird@38.2.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Thunderbird@38.2.0

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-4481

reference_id

reference_type

scores

value	0.00164
scoring_system	epss
scoring_elements	0.37323
published_at	2026-04-16T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37246
published_at	2026-04-01T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37412
published_at	2026-04-02T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37436
published_at	2026-04-04T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37264
published_at	2026-04-07T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37315
published_at	2026-04-08T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37327
published_at	2026-04-09T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37339
published_at	2026-04-11T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37305
published_at	2026-04-12T12:55:00Z

value	0.00164
scoring_system	epss
scoring_elements	0.37277
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-4481

reference_url	https://code.google.com/p/google-security-research/issues/detail?id=427&can=1
reference_id	CVE-2015-4481
reference_type	exploit
scores
url	https://code.google.com/p/google-security-research/issues/detail?id=427&can=1

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4481
reference_id	CVE-2015-4481
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4481

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/37925.txt
reference_id	CVE-2015-4481
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/37925.txt

reference_url	https://security.gentoo.org/glsa/201605-06
reference_id	GLSA-201605-06
reference_type
scores
url	https://security.gentoo.org/glsa/201605-06

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-84

reference_id

mfsa2015-84

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2015-84

Weaknesses

Exploits

date_added	2015-08-21
description	Mozilla - Maintenance Service Log File Overwrite Privilege Escalation
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`true`
source_date_published	2015-08-21
exploit_type	local
platform	windows
source_date_updated	2015-08-21
data_source	Exploit-DB
source_url	https://code.google.com/p/google-security-research/issues/detail?id=427&can=1

Severity_range_score 7.0 - 8.9

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jqq7-zaqr-6bap

Vulnerability Instance