Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-8v4c-jsxq-yfdq

Summary

Multiple vulnerabilities have been found in various GStreamer
    plug-ins, the worst of which could lead to the execution of arbitrary code.

Aliases

alias	CVE-2017-5848

Fixed_packages

url	pkg:alpm/archlinux/gst-plugins-bad@1.10.3-1
purl	pkg:alpm/archlinux/gst-plugins-bad@1.10.3-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gst-plugins-bad@1.10.3-1

url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2

url pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1

purl pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1

url	pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.10.4-1%3Fdistro=trixie

url pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.18.4-3%252Bdeb11u4%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.22.0-4%252Bdeb12u6%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.26.2-3?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.26.2-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.26.2-3%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-2?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.28.1-2%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-3?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.28.1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.28.1-3%3Fdistro=trixie

url	pkg:deb/debian/gst-plugins-bad1.0@1.28.2-1?distro=trixie
purl	pkg:deb/debian/gst-plugins-bad1.0@1.28.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.28.2-1%3Fdistro=trixie

url	pkg:ebuild/media-libs/gst-plugins-bad@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-bad@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-bad@1.10.3

url	pkg:ebuild/media-libs/gst-plugins-base@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-base@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-base@1.10.3

url	pkg:ebuild/media-libs/gst-plugins-good@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-good@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-good@1.10.3

url	pkg:ebuild/media-libs/gst-plugins-ugly@1.10.3
purl	pkg:ebuild/media-libs/gst-plugins-ugly@1.10.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/gst-plugins-ugly@1.10.3

Affected_packages

url pkg:alpm/archlinux/gst-plugins-bad@1.10.2-1

purl pkg:alpm/archlinux/gst-plugins-bad@1.10.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-8v4c-jsxq-yfdq

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/gst-plugins-bad@1.10.2-1

url pkg:deb/debian/gst-plugins-bad1.0@1.0.8-1~bpo70%2B1

purl pkg:deb/debian/gst-plugins-bad1.0@1.0.8-1~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.0.8-1~bpo70%252B1

url pkg:deb/debian/gst-plugins-bad1.0@1.2.4-1~bpo70%2B1

purl pkg:deb/debian/gst-plugins-bad1.0@1.2.4-1~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.2.4-1~bpo70%252B1

url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1

purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1

url pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

purl pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%2Bdeb8u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1pn1-qk99-jkaj

vulnerability	VCID-3cy1-fzbf-xfgn

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-646n-bbd9-rfak

vulnerability	VCID-67ga-bujk-n7f8

vulnerability	VCID-7w2v-896g-aqec

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aj4h-u1er-7faf

vulnerability	VCID-bq91-aydj-cfcy

vulnerability	VCID-fbbn-5y2w-7fdk

vulnerability	VCID-mk3b-hbpx-7bhy

vulnerability	VCID-mp8d-mf52-wkhg

vulnerability	VCID-n3c5-8bp9-qba6

vulnerability	VCID-nu6q-wxgm-w7fj

vulnerability	VCID-q56p-kvy2-23af

vulnerability	VCID-qghh-5fn5-8bds

vulnerability	VCID-qync-5kha-4bgu

vulnerability	VCID-s5qr-h24a-affm

vulnerability	VCID-sw1k-355a-xfe8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-bad1.0@1.4.4-2.1%252Bdeb8u2

url pkg:rpm/redhat/clutter-gst2@2.0.18-1?arch=el7

purl pkg:rpm/redhat/clutter-gst2@2.0.18-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/clutter-gst2@2.0.18-1%3Farch=el7

url pkg:rpm/redhat/gnome-video-effects@0.4.3-1?arch=el7

purl pkg:rpm/redhat/gnome-video-effects@0.4.3-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gnome-video-effects@0.4.3-1%3Farch=el7

url pkg:rpm/redhat/gstreamer1@1.10.4-2?arch=el7

purl pkg:rpm/redhat/gstreamer1@1.10.4-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer1@1.10.4-2%3Farch=el7

url pkg:rpm/redhat/gstreamer1-plugins-bad-free@1.10.4-2?arch=el7

purl pkg:rpm/redhat/gstreamer1-plugins-bad-free@1.10.4-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer1-plugins-bad-free@1.10.4-2%3Farch=el7

url pkg:rpm/redhat/gstreamer1-plugins-base@1.10.4-1?arch=el7

purl pkg:rpm/redhat/gstreamer1-plugins-base@1.10.4-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer1-plugins-base@1.10.4-1%3Farch=el7

url pkg:rpm/redhat/gstreamer1-plugins-good@1.10.4-2?arch=el7

purl pkg:rpm/redhat/gstreamer1-plugins-good@1.10.4-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer1-plugins-good@1.10.4-2%3Farch=el7

url pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.23-23?arch=el7

purl pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.23-23?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer-plugins-bad-free@0.10.23-23%3Farch=el7

url pkg:rpm/redhat/gstreamer-plugins-good@0.10.31-13?arch=el7

purl pkg:rpm/redhat/gstreamer-plugins-good@0.10.31-13?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer-plugins-good@0.10.31-13%3Farch=el7

url pkg:rpm/redhat/orc@0.4.26-1?arch=el7

purl pkg:rpm/redhat/orc@0.4.26-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1fpa-vyzr-7khc

vulnerability	VCID-1z2g-dxzn-27d2

vulnerability	VCID-22k7-ftg2-w3ee

vulnerability	VCID-2ykm-esve-s3b9

vulnerability	VCID-55zx-9zp8-d7ce

vulnerability	VCID-5vfg-uj1z-zudn

vulnerability	VCID-8v4c-jsxq-yfdq

vulnerability	VCID-aay9-3b4y-kbh1

vulnerability	VCID-bk2h-q83z-43cn

vulnerability	VCID-c9pa-ua87-tbdp

vulnerability	VCID-hgch-q86h-4qcn

vulnerability	VCID-j1w1-4xvp-7bh8

vulnerability	VCID-mcdu-z138-vkgv

vulnerability	VCID-mty4-7b38-7kak

vulnerability	VCID-vyzk-txky-muce

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/orc@0.4.26-1%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5848.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5848.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-5848

reference_id

reference_type

scores

value	0.06521
scoring_system	epss
scoring_elements	0.91067
published_at	2026-04-01T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91144
published_at	2026-04-21T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91117
published_at	2026-04-13T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91141
published_at	2026-04-18T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91073
published_at	2026-04-02T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91082
published_at	2026-04-04T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.9109
published_at	2026-04-07T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91103
published_at	2026-04-08T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91109
published_at	2026-04-09T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91116
published_at	2026-04-11T12:55:00Z

value	0.06521
scoring_system	epss
scoring_elements	0.91118
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-5848

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9809

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5843

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5848

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1419583
reference_id	1419583
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1419583

reference_url	https://security.archlinux.org/ASA-201702-5
reference_id	ASA-201702-5
reference_type
scores
url	https://security.archlinux.org/ASA-201702-5

reference_url

https://security.archlinux.org/AVG-165

reference_id

AVG-165

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-165

reference_url	https://security.gentoo.org/glsa/201705-10
reference_id	GLSA-201705-10
reference_type
scores
url	https://security.gentoo.org/glsa/201705-10

reference_url	https://access.redhat.com/errata/RHSA-2017:2060
reference_id	RHSA-2017:2060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2060

Weaknesses

cwe_id	120
name	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
description	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Exploits

Severity_range_score 4.3 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8v4c-jsxq-yfdq

Vulnerability Instance