Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-aj4h-u1er-7faf

Summary

Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.

Aliases

alias	CVE-2016-9445

Fixed_packages

url	pkg:alpm/archlinux/gst-plugins-bad@1.10.2-2
purl	pkg:alpm/archlinux/gst-plugins-bad@1.10.2-2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gst-plugins-bad@1.10.2-2

url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2

url	pkg:deb/debian/gst-plugins-bad1.0@1.10.1-1?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.10.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.1-1%3Fdistro=trixie

url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1

purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1

url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.26.2-3?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.26.2-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.26.2-3%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-2?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.28.1-2%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-3?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.28.1-3%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.28.2-1?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.28.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.28.2-1%3Fdistro=trixie

url	pkg:ebuild/media-libs/gst-plugins-bad@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-bad@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-bad@1.10.3

url	pkg:ebuild/media-libs/gst-plugins-base@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-base@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-base@1.10.3

url	pkg:ebuild/media-libs/gst-plugins-good@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-good@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-good@1.10.3

url	pkg:ebuild/media-libs/gst-plugins-ugly@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-ugly@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-ugly@1.10.3

Affected_packages

url pkg:alpm/archlinux/gst-plugins-bad@1.10.0-1

purl pkg:alpm/archlinux/gst-plugins-bad@1.10.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-aj4h-u1er-7faf

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gst-plugins-bad@1.10.0-1

url pkg:deb/debian/gst-plugins-bad1.0@1.0.8-1~bpo70%2B1

purl pkg:deb/debian/gst-plugins-bad1.0@1.0.8-1~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.0.8-1~bpo70%252B1

url pkg:deb/debian/gst-plugins-bad1.0@1.2.4-1~bpo70%2B1

purl pkg:deb/debian/gst-plugins-bad1.0@1.2.4-1~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.2.4-1~bpo70%252B1

url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1

purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1

url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2

url pkg:rpm/redhat/gstreamer1-plugins-bad-free@1.4.5-6?arch=el7_3

purl pkg:rpm/redhat/gstreamer1-plugins-bad-free@1.4.5-6?arch=el7_3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-qync-5kha-4bgu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer1-plugins-bad-free@1.4.5-6%3Farch=el7_3

url pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.19-5?arch=el6_8

purl pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.19-5?arch=el6_8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7z4z-rv5y-e7gg

vulnerability	VCID-aj4h-u1er-7faf

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.19-5%3Farch=el6_8

url pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.23-22?arch=el7_3

purl pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.23-22?arch=el7_3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7z4z-rv5y-e7gg

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-qync-5kha-4bgu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.23-22%3Farch=el7_3

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9445.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9445.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-9445

reference_id

reference_type

scores

value	0.02406
scoring_system	epss
scoring_elements	0.85006
published_at	2026-04-01T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85101
published_at	2026-04-21T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85102
published_at	2026-04-16T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85104
published_at	2026-04-18T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85019
published_at	2026-04-02T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85036
published_at	2026-04-04T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.8504
published_at	2026-04-07T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85063
published_at	2026-04-08T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.8507
published_at	2026-04-09T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85086
published_at	2026-04-11T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.85084
published_at	2026-04-12T12:55:00Z

value	0.02406
scoring_system	epss
scoring_elements	0.8508
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-9445

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9445
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9445

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9446
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9446

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:N/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1395767
reference_id	1395767
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1395767

reference_url	https://security.archlinux.org/ASA-201701-3
reference_id	ASA-201701-3
reference_type
scores
url	https://security.archlinux.org/ASA-201701-3

reference_url

https://security.archlinux.org/AVG-76

reference_id

AVG-76

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-76

reference_url	https://security.gentoo.org/glsa/201705-10
reference_id	GLSA-201705-10
reference_type
scores
url	https://security.gentoo.org/glsa/201705-10

reference_url	https://access.redhat.com/errata/RHSA-2016:2974
reference_id	RHSA-2016:2974
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:2974

reference_url	https://access.redhat.com/errata/RHSA-2017:0018
reference_id	RHSA-2017:0018
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0018

reference_url	https://access.redhat.com/errata/RHSA-2017:0021
reference_id	RHSA-2017:0021
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0021

Weaknesses

cwe_id	190
name	Integer Overflow or Wraparound
description	The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

Exploits

Severity_range_score 3.3 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aj4h-u1er-7faf

Vulnerability Instance