Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-kxr4-s4e5-jfab
SummaryInteger overflow in avidemux element in gst_avi_demux_invert function which allows a heap overwrite while parsing avi files. Potential for arbitrary code execution through heap overwrite.
Aliases
0
alias CVE-2022-1921
Fixed_packages
0
url pkg:deb/debian/gst-plugins-good1.0@1.18.4-2%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/gst-plugins-good1.0@1.18.4-2%2Bdeb11u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-good1.0@1.18.4-2%252Bdeb11u1%3Fdistro=trixie
1
url pkg:deb/debian/gst-plugins-good1.0@1.18.4-2%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/gst-plugins-good1.0@1.18.4-2%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-brnw-63j5-7yef
1
vulnerability VCID-d7fr-ks8g-nue3
2
vulnerability VCID-mj3t-j7g3-7bfq
3
vulnerability VCID-u73g-8ggx-1fc9
4
vulnerability VCID-w54k-cu4v-bke8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-good1.0@1.18.4-2%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/gst-plugins-good1.0@1.20.3-1?distro=trixie
purl pkg:deb/debian/gst-plugins-good1.0@1.20.3-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-good1.0@1.20.3-1%3Fdistro=trixie
3
url pkg:deb/debian/gst-plugins-good1.0@1.22.0-5%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/gst-plugins-good1.0@1.22.0-5%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29es-ejea-pygu
1
vulnerability VCID-brnw-63j5-7yef
2
vulnerability VCID-d7fr-ks8g-nue3
3
vulnerability VCID-mj3t-j7g3-7bfq
4
vulnerability VCID-u73g-8ggx-1fc9
5
vulnerability VCID-w54k-cu4v-bke8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-good1.0@1.22.0-5%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/gst-plugins-good1.0@1.26.2-1?distro=trixie
purl pkg:deb/debian/gst-plugins-good1.0@1.26.2-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-mj3t-j7g3-7bfq
1
vulnerability VCID-u73g-8ggx-1fc9
2
vulnerability VCID-w54k-cu4v-bke8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-good1.0@1.26.2-1%3Fdistro=trixie
5
url pkg:deb/debian/gst-plugins-good1.0@1.28.3-1?distro=trixie
purl pkg:deb/debian/gst-plugins-good1.0@1.28.3-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/gst-plugins-good1.0@1.28.3-1%3Fdistro=trixie
Affected_packages
0
url pkg:rpm/redhat/gstreamer1-plugins-good@1.18.4-6?arch=el9
purl pkg:rpm/redhat/gstreamer1-plugins-good@1.18.4-6?arch=el9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1ar6-muj2-jbdu
1
vulnerability VCID-3em5-gbpa-wkft
2
vulnerability VCID-k4gv-4sws-uycd
3
vulnerability VCID-kxr4-s4e5-jfab
4
vulnerability VCID-s7qg-sphe-nkbs
5
vulnerability VCID-y59d-6zuw-5ugc
6
vulnerability VCID-zfbj-u932-y7cx
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gstreamer1-plugins-good@1.18.4-6%3Farch=el9
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1921.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1921.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1921
reference_id
reference_type
scores
0
value 0.00043
scoring_system epss
scoring_elements 0.13583
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1921
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2130949
reference_id 2130949
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2130949
3
reference_url https://access.redhat.com/errata/RHSA-2023:2260
reference_id RHSA-2023:2260
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2260
Weaknesses
0
cwe_id 190
name Integer Overflow or Wraparound
description The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
Exploits
Severity_range_score7.8 - 7.8
Exploitability0.5
Weighted_severity7.0
Risk_score3.5
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-kxr4-s4e5-jfab