Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-32gy-xghg-g3gr
Summary
Security researcher Nils discovered a mechanism to break out
of the Gecko Media
Plugin (GMP) sandbox on Windows systems. The GMP sandbox is currently only
used to host h.264 video playback using the OpenH264 plugin but is being
developed to host other other media plugins. This bug would allow an attacker to
escape or bypass the GMP sandbox if another exploitable bug is found in a GMP
media plugin which allowed them to compromise the GMP process.
This bugs only affects Windows systems. OS X and Linux systems
are not affected by it.
Aliases
0
alias CVE-2014-8643
Fixed_packages
0
url pkg:mozilla/Firefox@35.0.0
purl pkg:mozilla/Firefox@35.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@35.0.0
Affected_packages
References
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-8643
reference_id
reference_type
scores
0
value 0.01348
scoring_system epss
scoring_elements 0.80115
published_at 2026-04-21T12:55:00Z
1
value 0.01348
scoring_system epss
scoring_elements 0.80036
published_at 2026-04-01T12:55:00Z
2
value 0.01348
scoring_system epss
scoring_elements 0.80044
published_at 2026-04-02T12:55:00Z
3
value 0.01348
scoring_system epss
scoring_elements 0.80065
published_at 2026-04-04T12:55:00Z
4
value 0.01348
scoring_system epss
scoring_elements 0.80054
published_at 2026-04-07T12:55:00Z
5
value 0.01348
scoring_system epss
scoring_elements 0.80082
published_at 2026-04-08T12:55:00Z
6
value 0.01348
scoring_system epss
scoring_elements 0.8009
published_at 2026-04-09T12:55:00Z
7
value 0.01348
scoring_system epss
scoring_elements 0.80109
published_at 2026-04-11T12:55:00Z
8
value 0.01348
scoring_system epss
scoring_elements 0.80093
published_at 2026-04-12T12:55:00Z
9
value 0.01348
scoring_system epss
scoring_elements 0.80085
published_at 2026-04-13T12:55:00Z
10
value 0.01348
scoring_system epss
scoring_elements 0.80114
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-8643
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8643
reference_id CVE-2014-8643
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8643
2
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2015-07
reference_id mfsa2015-07
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2015-07
Weaknesses
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-32gy-xghg-g3gr