Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-1xdm-2dj5-jkc7

Summary security update

Aliases

alias	CVE-2018-14347

Fixed_packages

url pkg:deb/debian/libextractor@1:1.3-4%2Bdeb9u3

purl pkg:deb/debian/libextractor@1:1.3-4%2Bdeb9u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.3-4%252Bdeb9u3

url	pkg:deb/debian/libextractor@1:1.7-1?distro=trixie
purl	pkg:deb/debian/libextractor@1:1.7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.7-1%3Fdistro=trixie

url pkg:deb/debian/libextractor@1:1.8-2%2Bdeb10u1

purl pkg:deb/debian/libextractor@1:1.8-2%2Bdeb10u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-tubv-28uu-2uh8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.8-2%252Bdeb10u1

url	pkg:deb/debian/libextractor@1:1.11-2?distro=trixie
purl	pkg:deb/debian/libextractor@1:1.11-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-2%3Fdistro=trixie

url	pkg:deb/debian/libextractor@1:1.11-7?distro=trixie
purl	pkg:deb/debian/libextractor@1:1.11-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.11-7%3Fdistro=trixie

url	pkg:deb/debian/libextractor@1:1.13-8?distro=trixie
purl	pkg:deb/debian/libextractor@1:1.13-8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-8%3Fdistro=trixie

url	pkg:deb/debian/libextractor@1:1.13-10?distro=trixie
purl	pkg:deb/debian/libextractor@1:1.13-10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.13-10%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/libextractor@0.4.2-2sarge6

purl pkg:deb/debian/libextractor@0.4.2-2sarge6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-1z9b-trb7-2ubp

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-4p26-wkq3-v3b2

vulnerability	VCID-5q1h-7uk2-nkhx

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-8uds-zs9k-47en

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-bkr4-sab1-5ka2

vulnerability	VCID-durs-kj4r-jbf2

vulnerability	VCID-fct6-695j-t7bs

vulnerability	VCID-kgk7-hqby-wkez

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-mg1z-d7y8-dfaj

vulnerability	VCID-qayv-8u9a-83h4

vulnerability	VCID-sv3r-4tym-qua5

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-utex-65f9-53cq

vulnerability	VCID-wpgs-8fw5-wbhe

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xqh5-sxfb-gueh

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-xzye-g5rw-fyh5

vulnerability	VCID-ysee-ywmb-zkep

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.4.2-2sarge6

url pkg:deb/debian/libextractor@0.5.16-2

purl pkg:deb/debian/libextractor@0.5.16-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-xzye-g5rw-fyh5

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.16-2

url pkg:deb/debian/libextractor@0.5.20c-1

purl pkg:deb/debian/libextractor@0.5.20c-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-xzye-g5rw-fyh5

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@0.5.20c-1

url pkg:deb/debian/libextractor@1:0.5.23%2Bdfsg-7

purl pkg:deb/debian/libextractor@1:0.5.23%2Bdfsg-7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:0.5.23%252Bdfsg-7

url pkg:deb/debian/libextractor@1:0.6.3-5

purl pkg:deb/debian/libextractor@1:0.6.3-5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:0.6.3-5

url pkg:deb/debian/libextractor@1:1.3-2

purl pkg:deb/debian/libextractor@1:1.3-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.3-2

url pkg:deb/debian/libextractor@1:1.3-2%2Bdeb8u1

purl pkg:deb/debian/libextractor@1:1.3-2%2Bdeb8u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.3-2%252Bdeb8u1

url pkg:deb/debian/libextractor@1:1.3-4%2Bdeb9u3

purl pkg:deb/debian/libextractor@1:1.3-4%2Bdeb9u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1xdm-2dj5-jkc7

vulnerability	VCID-2auw-wc6u-ekcs

vulnerability	VCID-3bg1-rwze-kuhw

vulnerability	VCID-5ymr-xk84-8uh3

vulnerability	VCID-ahs6-mesc-yqhm

vulnerability	VCID-bdsg-x852-wfgn

vulnerability	VCID-kpcg-4av4-gka8

vulnerability	VCID-kxcz-d7a4-77e8

vulnerability	VCID-tc8j-82se-qfbk

vulnerability	VCID-tubv-28uu-2uh8

vulnerability	VCID-x3k6-yrp9-9ud9

vulnerability	VCID-xyab-d3gr-zkdw

vulnerability	VCID-zd6d-q8xx-zud6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libextractor@1:1.3-4%252Bdeb9u3

References

reference_url	http://lists.gnu.org/archive/html/bug-libextractor/2018-07/msg00000.html
reference_id
reference_type
scores
url	http://lists.gnu.org/archive/html/bug-libextractor/2018-07/msg00000.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-14347

reference_id

reference_type

scores

value	0.00566
scoring_system	epss
scoring_elements	0.68494
published_at	2026-04-16T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68456
published_at	2026-04-13T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68392
published_at	2026-04-01T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68412
published_at	2026-04-02T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68432
published_at	2026-04-04T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68408
published_at	2026-04-07T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68459
published_at	2026-04-08T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68475
published_at	2026-04-09T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68501
published_at	2026-04-11T12:55:00Z

value	0.00566
scoring_system	epss
scoring_elements	0.68489
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-14347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16430

reference_url	https://gnunet.org/bugs/view.php?id=5399
reference_id
reference_type
scores
url	https://gnunet.org/bugs/view.php?id=5399

reference_url	https://gnunet.org/git/libextractor.git/commit/?id=f033468cd36e2b8bf92d747fbd683b2ace8da394
reference_id
reference_type
scores
url	https://gnunet.org/git/libextractor.git/commit/?id=f033468cd36e2b8bf92d747fbd683b2ace8da394

reference_url	https://lists.debian.org/debian-lts-announce/2018/08/msg00025.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/08/msg00025.html

reference_url	https://www.debian.org/security/2018/dsa-4290
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4290

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904905
reference_id	904905
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904905

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:libextractor::::::::
reference_id	cpe:2.3:a:gnu:libextractor::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:libextractor::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-14347

reference_id

CVE-2018-14347

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-14347

reference_url	https://usn.ubuntu.com/4641-1/
reference_id	USN-4641-1
reference_type
scores
url	https://usn.ubuntu.com/4641-1/

Weaknesses

cwe_id	835
name	Loop with Unreachable Exit Condition ('Infinite Loop')
description	The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Exploits

Severity_range_score 4.3 - 6.5

Exploitability 0.5

Weighted_severity 5.9

Risk_score 3.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1xdm-2dj5-jkc7

Vulnerability Instance