Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-yqjj-75r1-b3ht

Summary security update

Aliases

alias	CVE-2014-8158

Fixed_packages

url	pkg:alpm/archlinux/jasper@1.900.5-1
purl	pkg:alpm/archlinux/jasper@1.900.5-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/jasper@1.900.5-1

url pkg:deb/debian/jasper@1.900.1-13%2Bdeb7u4

purl pkg:deb/debian/jasper@1.900.1-13%2Bdeb7u4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3m5a-x31m-wqhs

vulnerability	VCID-6qcp-9kba-1khz

vulnerability	VCID-9hdt-gf9q-skh8

vulnerability	VCID-bpmw-qhm1-audu

vulnerability	VCID-d9ga-c25d-mfg5

vulnerability	VCID-hq12-wrsv-qffj

vulnerability	VCID-k363-jg3m-1yhz

vulnerability	VCID-m93b-k4b2-zye1

vulnerability	VCID-np35-vr8e-wqa9

vulnerability	VCID-ptkv-jw36-cbar

vulnerability	VCID-rnuc-wtg3-r3cc

vulnerability	VCID-td6h-jus8-vfe9

vulnerability	VCID-wrwt-qqrc-s7at

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jasper@1.900.1-13%252Bdeb7u4

url	pkg:ebuild/media-libs/jasper@1.900.1-r9
purl	pkg:ebuild/media-libs/jasper@1.900.1-r9
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/jasper@1.900.1-r9

Affected_packages

url pkg:alpm/archlinux/jasper@1.900.1-15

purl pkg:alpm/archlinux/jasper@1.900.1-15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1e4z-zk1w-33fw

vulnerability	VCID-1mns-2axr-w3a1

vulnerability	VCID-273p-y942-ekes

vulnerability	VCID-2hkv-yn4v-6kcy

vulnerability	VCID-3m5a-x31m-wqhs

vulnerability	VCID-6qcp-9kba-1khz

vulnerability	VCID-87vn-adcw-37bh

vulnerability	VCID-932v-xwug-nbfy

vulnerability	VCID-9cz2-djvk-quc6

vulnerability	VCID-9hdt-gf9q-skh8

vulnerability	VCID-9kqw-qv6w-zugt

vulnerability	VCID-aehh-ywwn-byee

vulnerability	VCID-ckw2-w524-k3gz

vulnerability	VCID-d9ga-c25d-mfg5

vulnerability	VCID-dfkc-hyp3-6kbd

vulnerability	VCID-f3xd-54ke-1bf6

vulnerability	VCID-hc16-adzw-5fbz

vulnerability	VCID-hmxs-jxny-j7bg

vulnerability	VCID-hz9e-rv14-wfhm

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-m93b-k4b2-zye1

vulnerability	VCID-p4ue-y733-1ubd

vulnerability	VCID-ptkv-jw36-cbar

vulnerability	VCID-tqtm-achn-z3fg

vulnerability	VCID-yqjj-75r1-b3ht

vulnerability	VCID-zhwp-sauu-b3g6

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/jasper@1.900.1-15

url pkg:deb/debian/jasper@1.701.0-2

purl pkg:deb/debian/jasper@1.701.0-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3m5a-x31m-wqhs

vulnerability	VCID-6qcp-9kba-1khz

vulnerability	VCID-9hdt-gf9q-skh8

vulnerability	VCID-9kqw-qv6w-zugt

vulnerability	VCID-bpmw-qhm1-audu

vulnerability	VCID-ckw2-w524-k3gz

vulnerability	VCID-d9ga-c25d-mfg5

vulnerability	VCID-f3xd-54ke-1bf6

vulnerability	VCID-hq12-wrsv-qffj

vulnerability	VCID-k363-jg3m-1yhz

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-m93b-k4b2-zye1

vulnerability	VCID-np35-vr8e-wqa9

vulnerability	VCID-ptkv-jw36-cbar

vulnerability	VCID-rnuc-wtg3-r3cc

vulnerability	VCID-td6h-jus8-vfe9

vulnerability	VCID-wrwt-qqrc-s7at

vulnerability	VCID-yqjj-75r1-b3ht

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jasper@1.701.0-2

url pkg:deb/debian/jasper@1.900.1-5.1%2Blenny2

purl pkg:deb/debian/jasper@1.900.1-5.1%2Blenny2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3m5a-x31m-wqhs

vulnerability	VCID-6qcp-9kba-1khz

vulnerability	VCID-9hdt-gf9q-skh8

vulnerability	VCID-9kqw-qv6w-zugt

vulnerability	VCID-bpmw-qhm1-audu

vulnerability	VCID-ckw2-w524-k3gz

vulnerability	VCID-d9ga-c25d-mfg5

vulnerability	VCID-f3xd-54ke-1bf6

vulnerability	VCID-hq12-wrsv-qffj

vulnerability	VCID-k363-jg3m-1yhz

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-m93b-k4b2-zye1

vulnerability	VCID-np35-vr8e-wqa9

vulnerability	VCID-ptkv-jw36-cbar

vulnerability	VCID-rnuc-wtg3-r3cc

vulnerability	VCID-td6h-jus8-vfe9

vulnerability	VCID-wrwt-qqrc-s7at

vulnerability	VCID-yqjj-75r1-b3ht

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jasper@1.900.1-5.1%252Blenny2

url pkg:deb/debian/jasper@1.900.1-7%2Bsqueeze1

purl pkg:deb/debian/jasper@1.900.1-7%2Bsqueeze1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3m5a-x31m-wqhs

vulnerability	VCID-6qcp-9kba-1khz

vulnerability	VCID-9hdt-gf9q-skh8

vulnerability	VCID-9kqw-qv6w-zugt

vulnerability	VCID-bpmw-qhm1-audu

vulnerability	VCID-ckw2-w524-k3gz

vulnerability	VCID-d9ga-c25d-mfg5

vulnerability	VCID-f3xd-54ke-1bf6

vulnerability	VCID-hq12-wrsv-qffj

vulnerability	VCID-k363-jg3m-1yhz

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-m93b-k4b2-zye1

vulnerability	VCID-np35-vr8e-wqa9

vulnerability	VCID-ptkv-jw36-cbar

vulnerability	VCID-rnuc-wtg3-r3cc

vulnerability	VCID-td6h-jus8-vfe9

vulnerability	VCID-wrwt-qqrc-s7at

vulnerability	VCID-yqjj-75r1-b3ht

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jasper@1.900.1-7%252Bsqueeze1

url pkg:deb/debian/jasper@1.900.1-7%2Bsqueeze4

purl pkg:deb/debian/jasper@1.900.1-7%2Bsqueeze4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3m5a-x31m-wqhs

vulnerability	VCID-6qcp-9kba-1khz

vulnerability	VCID-9hdt-gf9q-skh8

vulnerability	VCID-9kqw-qv6w-zugt

vulnerability	VCID-bpmw-qhm1-audu

vulnerability	VCID-ckw2-w524-k3gz

vulnerability	VCID-d9ga-c25d-mfg5

vulnerability	VCID-f3xd-54ke-1bf6

vulnerability	VCID-hq12-wrsv-qffj

vulnerability	VCID-k363-jg3m-1yhz

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-m93b-k4b2-zye1

vulnerability	VCID-np35-vr8e-wqa9

vulnerability	VCID-ptkv-jw36-cbar

vulnerability	VCID-rnuc-wtg3-r3cc

vulnerability	VCID-td6h-jus8-vfe9

vulnerability	VCID-wrwt-qqrc-s7at

vulnerability	VCID-yqjj-75r1-b3ht

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/jasper@1.900.1-7%252Bsqueeze4

url pkg:rpm/redhat/jasper@1.900.1-16.el6_6?arch=3

purl pkg:rpm/redhat/jasper@1.900.1-16.el6_6?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-yqjj-75r1-b3ht

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jasper@1.900.1-16.el6_6%3Farch=3

url pkg:rpm/redhat/jasper@1.900.1-26.el7_0?arch=3

purl pkg:rpm/redhat/jasper@1.900.1-26.el7_0?arch=3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-m85g-54qv-h3at

vulnerability	VCID-yqjj-75r1-b3ht

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jasper@1.900.1-26.el7_0%3Farch=3

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8158.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8158.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8158

reference_id

reference_type

scores

value	0.06219
scoring_system	epss
scoring_elements	0.90904
published_at	2026-04-16T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90827
published_at	2026-04-01T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90833
published_at	2026-04-02T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90843
published_at	2026-04-04T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90854
published_at	2026-04-07T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90865
published_at	2026-04-08T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90872
published_at	2026-04-09T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.9088
published_at	2026-04-12T12:55:00Z

value	0.06219
scoring_system	epss
scoring_elements	0.90879
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8158

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8157
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8157

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8158
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8158

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1179298
reference_id	1179298
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1179298

reference_url

https://security.archlinux.org/AVG-99

reference_id

AVG-99

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-99

reference_url	https://security.gentoo.org/glsa/201503-01
reference_id	GLSA-201503-01
reference_type
scores
url	https://security.gentoo.org/glsa/201503-01

reference_url	https://access.redhat.com/errata/RHSA-2015:0074
reference_id	RHSA-2015:0074
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0074

reference_url	https://access.redhat.com/errata/RHSA-2015:0698
reference_id	RHSA-2015:0698
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0698

reference_url	https://usn.ubuntu.com/2483-1/
reference_id	USN-2483-1
reference_type
scores
url	https://usn.ubuntu.com/2483-1/

reference_url	https://usn.ubuntu.com/2483-2/
reference_id	USN-2483-2
reference_type
scores
url	https://usn.ubuntu.com/2483-2/

Weaknesses

cwe_id	770
name	Allocation of Resources Without Limits or Throttling
description	The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

Exploits

Severity_range_score 9.0 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yqjj-75r1-b3ht

Vulnerability Instance