Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-hmqc-xunp-myap

Summary

Multiple vulnerabilities have been found in OpenSSH, the worst of
    which allows remote attackers to cause Denial of Service.

Aliases

alias	CVE-2016-3115

Fixed_packages

url	pkg:deb/debian/openssh@1:7.2p2-1?distro=trixie
purl	pkg:deb/debian/openssh@1:7.2p2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:7.2p2-1%3Fdistro=trixie

url pkg:deb/debian/openssh@1:7.4p1-10%2Bdeb9u7

purl pkg:deb/debian/openssh@1:7.4p1-10%2Bdeb9u7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:7.4p1-10%252Bdeb9u7

url pkg:deb/debian/openssh@1:8.4p1-5%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/openssh@1:8.4p1-5%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-792n-jkzj-qqhd

vulnerability	VCID-8efr-budq-6bb6

vulnerability	VCID-a4eq-r71a-buhm

vulnerability	VCID-a7m6-uqbt-nqd9

vulnerability	VCID-ajmg-5kgx-k7h5

vulnerability	VCID-b4uc-yh56-muej

vulnerability	VCID-bnrq-2fsr-mfgd

vulnerability	VCID-kgn5-p8kx-qucj

vulnerability	VCID-wga4-sqwk-4bfj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:8.4p1-5%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/openssh@1:9.2p1-2%2Bdeb12u7?distro=trixie

purl pkg:deb/debian/openssh@1:9.2p1-2%2Bdeb12u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-792n-jkzj-qqhd

vulnerability	VCID-8efr-budq-6bb6

vulnerability	VCID-a4eq-r71a-buhm

vulnerability	VCID-a7m6-uqbt-nqd9

vulnerability	VCID-ajmg-5kgx-k7h5

vulnerability	VCID-bnrq-2fsr-mfgd

vulnerability	VCID-kgn5-p8kx-qucj

vulnerability	VCID-wga4-sqwk-4bfj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:9.2p1-2%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/openssh@1:10.0p1-7%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/openssh@1:10.0p1-7%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-792n-jkzj-qqhd

vulnerability	VCID-8efr-budq-6bb6

vulnerability	VCID-a4eq-r71a-buhm

vulnerability	VCID-ajmg-5kgx-k7h5

vulnerability	VCID-bnrq-2fsr-mfgd

vulnerability	VCID-kgn5-p8kx-qucj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.0p1-7%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/openssh@1:10.2p1-6?distro=trixie

purl pkg:deb/debian/openssh@1:10.2p1-6?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-792n-jkzj-qqhd

vulnerability	VCID-8efr-budq-6bb6

vulnerability	VCID-a4eq-r71a-buhm

vulnerability	VCID-bnrq-2fsr-mfgd

vulnerability	VCID-kgn5-p8kx-qucj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.2p1-6%3Fdistro=trixie

url	pkg:deb/debian/openssh@1:10.3p1-1?distro=trixie
purl	pkg:deb/debian/openssh@1:10.3p1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:10.3p1-1%3Fdistro=trixie

url	pkg:ebuild/net-misc/openssh@7.3_p1-r7
purl	pkg:ebuild/net-misc/openssh@7.3_p1-r7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-misc/openssh@7.3_p1-r7

Affected_packages

url pkg:deb/debian/openssh@1:3.4p1-1.woody.3

purl pkg:deb/debian/openssh@1:3.4p1-1.woody.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-1pq3-ktfr-vqa4

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-48u8-uvvd-m7ef

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-61qv-3p82-fuh9

vulnerability	VCID-679v-qrkw-qbar

vulnerability	VCID-6n7q-b264-b3c9

vulnerability	VCID-6tgm-yq5b-gyev

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-84r3-6n5q-1kft

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-9x46-xm8n-m3bs

vulnerability	VCID-9zr9-947g-g7dn

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-akd1-gm5s-cfcs

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-bemm-xfxx-bqhb

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-dw3s-w6py-muh9

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g1vx-bcxw-mqfg

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-hu66-jpbe-dfhn

vulnerability	VCID-jzk9-kyvp-5qdz

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-kgja-5xxj-1ucg

vulnerability	VCID-m6qv-m21j-g3cj

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-nrj6-k3qf-2ubp

vulnerability	VCID-p5ps-aad3-que9

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-rwzw-vrhk-sqfw

vulnerability	VCID-sv83-ggsr-27au

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-tqd9-nyt5-13e7

vulnerability	VCID-tur1-ruxr-yqe3

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-u4sn-d8j6-bkdx

vulnerability	VCID-u8z5-76zk-hqah

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-wx7h-g53d-67eh

vulnerability	VCID-yrvb-stza-yfdp

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-z21r-z4zr-p3ex

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:3.4p1-1.woody.3

url pkg:deb/debian/openssh@1:3.8.1p1-8.sarge.6

purl pkg:deb/debian/openssh@1:3.8.1p1-8.sarge.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-48u8-uvvd-m7ef

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-6n7q-b264-b3c9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-84r3-6n5q-1kft

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-9x46-xm8n-m3bs

vulnerability	VCID-9zr9-947g-g7dn

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-akd1-gm5s-cfcs

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-dw3s-w6py-muh9

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g1vx-bcxw-mqfg

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzk9-kyvp-5qdz

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-p5ps-aad3-que9

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-rwzw-vrhk-sqfw

vulnerability	VCID-sv83-ggsr-27au

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-tqd9-nyt5-13e7

vulnerability	VCID-tur1-ruxr-yqe3

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-u4sn-d8j6-bkdx

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrvb-stza-yfdp

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-z21r-z4zr-p3ex

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:3.8.1p1-8.sarge.6

url pkg:deb/debian/openssh@1:4.3p2-9etch2%2Bm68k1

purl pkg:deb/debian/openssh@1:4.3p2-9etch2%2Bm68k1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-6n7q-b264-b3c9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-84r3-6n5q-1kft

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-9x46-xm8n-m3bs

vulnerability	VCID-9zr9-947g-g7dn

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-dw3s-w6py-muh9

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g1vx-bcxw-mqfg

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-tqd9-nyt5-13e7

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-u4sn-d8j6-bkdx

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrvb-stza-yfdp

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:4.3p2-9etch2%252Bm68k1

url pkg:deb/debian/openssh@1:4.3p2-9etch3

purl pkg:deb/debian/openssh@1:4.3p2-9etch3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-6n7q-b264-b3c9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-84r3-6n5q-1kft

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-9x46-xm8n-m3bs

vulnerability	VCID-9zr9-947g-g7dn

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-dw3s-w6py-muh9

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g1vx-bcxw-mqfg

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-tqd9-nyt5-13e7

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-u4sn-d8j6-bkdx

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrvb-stza-yfdp

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:4.3p2-9etch3

url pkg:deb/debian/openssh@1:5.1p1-5

purl pkg:deb/debian/openssh@1:5.1p1-5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:5.1p1-5

url pkg:deb/debian/openssh@1:5.5p1-6%2Bsqueeze5

purl pkg:deb/debian/openssh@1:5.5p1-6%2Bsqueeze5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:5.5p1-6%252Bsqueeze5

url pkg:deb/debian/openssh@1:5.5p1-6%2Bsqueeze8

purl pkg:deb/debian/openssh@1:5.5p1-6%2Bsqueeze8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-45wb-44rx-1bhw

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gns3-z8js-4fef

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-k8ae-fc4a-gycy

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-ytkr-ev34-buhd

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:5.5p1-6%252Bsqueeze8

url pkg:deb/debian/openssh@1:6.0p1-4%2Bdeb7u4

purl pkg:deb/debian/openssh@1:6.0p1-4%2Bdeb7u4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-81na-a8p9-3fc3

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-mpex-kz3k-97aq

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-qx5k-n11s-rucg

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:6.0p1-4%252Bdeb7u4

url pkg:deb/debian/openssh@1:6.6p1-4~bpo70%2B1

purl pkg:deb/debian/openssh@1:6.6p1-4~bpo70%2B1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:6.6p1-4~bpo70%252B1

url pkg:deb/debian/openssh@1:6.7p1-5

purl pkg:deb/debian/openssh@1:6.7p1-5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:6.7p1-5

url pkg:deb/debian/openssh@1:6.7p1-5%2Bdeb8u4

purl pkg:deb/debian/openssh@1:6.7p1-5%2Bdeb8u4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11sf-sq1n-8ybk

vulnerability	VCID-27t6-mvt2-6kcd

vulnerability	VCID-3mzh-y1ek-cqh9

vulnerability	VCID-4fj8-vfgx-pyh9

vulnerability	VCID-87uy-3q5r-r3b7

vulnerability	VCID-a7kr-mfau-bufd

vulnerability	VCID-aaue-a343-u7f5

vulnerability	VCID-bdnh-bkx5-h3fe

vulnerability	VCID-c72q-f2cy-eqgc

vulnerability	VCID-e3hw-afkw-f7bt

vulnerability	VCID-fczw-59xy-83c6

vulnerability	VCID-g5qe-8p8p-3kd6

vulnerability	VCID-g8g3-ts9j-8uab

vulnerability	VCID-ge2m-my5w-z3eb

vulnerability	VCID-gzmm-8kvw-6qbv

vulnerability	VCID-ha8v-pqwf-r3a1

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-hse5-y15y-n3dw

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-kbba-6c9u-tygk

vulnerability	VCID-myec-kc76-9bc1

vulnerability	VCID-qt1x-kyuf-gker

vulnerability	VCID-t1sg-4bvj-qqfk

vulnerability	VCID-u21t-acnr-dub2

vulnerability	VCID-ubjj-qb2c-n3d4

vulnerability	VCID-v1vq-wecd-1ud9

vulnerability	VCID-v27n-4vt2-rffw

vulnerability	VCID-vj3u-a1c3-6qe5

vulnerability	VCID-vrgz-eguk-k3dy

vulnerability	VCID-wkpy-uwex-93db

vulnerability	VCID-yrzy-er8x-c3ad

vulnerability	VCID-zncv-645p-f3gn

vulnerability	VCID-zxw6-2um9-23e7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssh@1:6.7p1-5%252Bdeb8u4

url pkg:rpm/redhat/openssh@5.3p1-114?arch=el6_7

purl pkg:rpm/redhat/openssh@5.3p1-114?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-t1sg-4bvj-qqfk

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssh@5.3p1-114%3Farch=el6_7

url pkg:rpm/redhat/openssh@6.6.1p1-25?arch=el7_2

purl pkg:rpm/redhat/openssh@6.6.1p1-25?arch=el7_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-hmqc-xunp-myap

vulnerability	VCID-myec-kc76-9bc1

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssh@6.6.1p1-25%3Farch=el7_2

References

reference_url	http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c
reference_id
reference_type
scores
url	http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c

reference_url	http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c.diff?r1=1.281&r2=1.282&f=h
reference_id
reference_type
scores
url	http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/session.c.diff?r1=1.281&r2=1.282&f=h

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183101.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183101.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183122.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183122.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178838.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178838.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179924.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179924.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180491.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180491.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184264.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184264.html

reference_url	http://packetstormsecurity.com/files/136234/OpenSSH-7.2p1-xauth-Command-Injection-Bypass.html
reference_id
reference_type
scores
url	http://packetstormsecurity.com/files/136234/OpenSSH-7.2p1-xauth-Command-Injection-Bypass.html

reference_url	http://rhn.redhat.com/errata/RHSA-2016-0465.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2016-0465.html

reference_url	http://rhn.redhat.com/errata/RHSA-2016-0466.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2016-0466.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3115.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3115.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-3115

reference_id

reference_type

scores

value	0.43987
scoring_system	epss
scoring_elements	0.97548
published_at	2026-04-18T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97539
published_at	2026-04-13T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97547
published_at	2026-04-16T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97514
published_at	2026-04-01T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97521
published_at	2026-04-02T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97523
published_at	2026-04-04T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97525
published_at	2026-04-07T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97531
published_at	2026-04-08T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97532
published_at	2026-04-09T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97536
published_at	2026-04-11T12:55:00Z

value	0.43987
scoring_system	epss
scoring_elements	0.97538
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-3115

reference_url	https://bto.bluecoat.com/security-advisory/sa121
reference_id
reference_type
scores
url	https://bto.bluecoat.com/security-advisory/sa121

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3115
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3115

reference_url	http://seclists.org/fulldisclosure/2016/Mar/46
reference_id
reference_type
scores
url	http://seclists.org/fulldisclosure/2016/Mar/46

reference_url	http://seclists.org/fulldisclosure/2016/Mar/47
reference_id
reference_type
scores
url	http://seclists.org/fulldisclosure/2016/Mar/47

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:S/C:P/I:P/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115
reference_id
reference_type
scores
url	https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115

reference_url	https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html

reference_url	https://www.exploit-db.com/exploits/39569/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/39569/

reference_url	https://www.freebsd.org/security/advisories/FreeBSD-SA-16:14.openssh.asc
reference_id
reference_type
scores
url	https://www.freebsd.org/security/advisories/FreeBSD-SA-16:14.openssh.asc

reference_url	http://www.openssh.com/txt/x11fwd.adv
reference_id
reference_type
scores
url	http://www.openssh.com/txt/x11fwd.adv

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

reference_url	http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

reference_url	http://www.securityfocus.com/bid/84314
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/84314

reference_url	http://www.securitytracker.com/id/1035249
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1035249

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1316829
reference_id	1316829
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1316829

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openbsd:openssh::p1::::::*
reference_id	cpe:2.3:a:openbsd:openssh::p1::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openbsd:openssh::p1::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:vm_server:3.2:::::::*
reference_id	cpe:2.3:o:oracle:vm_server:3.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:oracle:vm_server:3.2:::::::*

reference_url	https://github.com/tintinweb/pub/tree/e8fe09e2123f07f09e3f8e34fc4e3e58fe804fd4/pocs/cve-2016-3115
reference_id	CVE-2016-3115
reference_type	exploit
scores
url	https://github.com/tintinweb/pub/tree/e8fe09e2123f07f09e3f8e34fc4e3e58fe804fd4/pocs/cve-2016-3115

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/39569.py
reference_id	CVE-2016-3115
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/39569.py

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-3115

reference_id

CVE-2016-3115

reference_type

scores

value	5.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:P/I:P/A:N

value	6.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2016-3115

reference_url	https://security.gentoo.org/glsa/201612-18
reference_id	GLSA-201612-18
reference_type
scores
url	https://security.gentoo.org/glsa/201612-18

reference_url	https://access.redhat.com/errata/RHSA-2016:0465
reference_id	RHSA-2016:0465
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0465

reference_url	https://access.redhat.com/errata/RHSA-2016:0466
reference_id	RHSA-2016:0466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0466

reference_url	https://usn.ubuntu.com/2966-1/
reference_id	USN-2966-1
reference_type
scores
url	https://usn.ubuntu.com/2966-1/

Weaknesses

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

date_added	2016-03-16
description	OpenSSH 7.2p1 - (Authenticated) xauth Command Injection
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`false`
source_date_published	2016-03-16
exploit_type	remote
platform	multiple
source_date_updated	2018-01-11
data_source	Exploit-DB
source_url	https://github.com/tintinweb/pub/tree/e8fe09e2123f07f09e3f8e34fc4e3e58fe804fd4/pocs/cve-2016-3115

Severity_range_score 4.9 - 6.4

Exploitability 2.0

Weighted_severity 5.8

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hmqc-xunp-myap

Vulnerability Instance