Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-7gwj-3x98-rqdp

Summary JDK: class verifier allowing Security Manager bypass

Aliases

alias	CVE-2017-1376

Fixed_packages

Affected_packages

url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.10-1jpp.2?arch=el6_9

purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.10-1jpp.2?arch=el6_9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3xyb-xeyq-n3dm

vulnerability	VCID-49z5-4djw-xuav

vulnerability	VCID-4ucs-3zp9-rqey

vulnerability	VCID-5jvq-evzj-tfcc

vulnerability	VCID-5vrc-h4t3-uucb

vulnerability	VCID-7d2e-14yp-pkhq

vulnerability	VCID-7gwj-3x98-rqdp

vulnerability	VCID-9yds-dpzg-4ba9

vulnerability	VCID-awrz-da8u-7ud2

vulnerability	VCID-bthw-frhn-wqf6

vulnerability	VCID-d4gw-vgm6-qbf3

vulnerability	VCID-dtcg-vqnh-kugk

vulnerability	VCID-edzj-4q7d-4bdj

vulnerability	VCID-hxb8-qu7h-8bdu

vulnerability	VCID-ps35-n8f5-uqcr

vulnerability	VCID-qfam-11ye-tkd8

vulnerability	VCID-wcc9-n2hm-87fx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.10-1jpp.2%3Farch=el6_9

url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.10-1jpp.3?arch=el7

purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.10-1jpp.3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3xyb-xeyq-n3dm

vulnerability	VCID-49z5-4djw-xuav

vulnerability	VCID-4ucs-3zp9-rqey

vulnerability	VCID-5jvq-evzj-tfcc

vulnerability	VCID-5vrc-h4t3-uucb

vulnerability	VCID-7d2e-14yp-pkhq

vulnerability	VCID-7gwj-3x98-rqdp

vulnerability	VCID-9yds-dpzg-4ba9

vulnerability	VCID-awrz-da8u-7ud2

vulnerability	VCID-bthw-frhn-wqf6

vulnerability	VCID-d4gw-vgm6-qbf3

vulnerability	VCID-dtcg-vqnh-kugk

vulnerability	VCID-edzj-4q7d-4bdj

vulnerability	VCID-hxb8-qu7h-8bdu

vulnerability	VCID-ps35-n8f5-uqcr

vulnerability	VCID-qfam-11ye-tkd8

vulnerability	VCID-wcc9-n2hm-87fx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.4.10-1jpp.3%3Farch=el7

url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.10-1jpp.1?arch=el6_9

purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.10-1jpp.1?arch=el6_9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3xyb-xeyq-n3dm

vulnerability	VCID-43vy-2etx-9ucx

vulnerability	VCID-49z5-4djw-xuav

vulnerability	VCID-4ucs-3zp9-rqey

vulnerability	VCID-5jvq-evzj-tfcc

vulnerability	VCID-5vrc-h4t3-uucb

vulnerability	VCID-7d2e-14yp-pkhq

vulnerability	VCID-7gwj-3x98-rqdp

vulnerability	VCID-9yds-dpzg-4ba9

vulnerability	VCID-awrz-da8u-7ud2

vulnerability	VCID-bthw-frhn-wqf6

vulnerability	VCID-d4gw-vgm6-qbf3

vulnerability	VCID-dtcg-vqnh-kugk

vulnerability	VCID-edzj-4q7d-4bdj

vulnerability	VCID-hxb8-qu7h-8bdu

vulnerability	VCID-ps35-n8f5-uqcr

vulnerability	VCID-qfam-11ye-tkd8

vulnerability	VCID-wcc9-n2hm-87fx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.10-1jpp.1%3Farch=el6_9

url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.10-1jpp.3?arch=el7

purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.10-1jpp.3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3xyb-xeyq-n3dm

vulnerability	VCID-43vy-2etx-9ucx

vulnerability	VCID-49z5-4djw-xuav

vulnerability	VCID-4ucs-3zp9-rqey

vulnerability	VCID-5jvq-evzj-tfcc

vulnerability	VCID-5vrc-h4t3-uucb

vulnerability	VCID-7d2e-14yp-pkhq

vulnerability	VCID-7gwj-3x98-rqdp

vulnerability	VCID-9yds-dpzg-4ba9

vulnerability	VCID-awrz-da8u-7ud2

vulnerability	VCID-bthw-frhn-wqf6

vulnerability	VCID-d4gw-vgm6-qbf3

vulnerability	VCID-dtcg-vqnh-kugk

vulnerability	VCID-edzj-4q7d-4bdj

vulnerability	VCID-hxb8-qu7h-8bdu

vulnerability	VCID-ps35-n8f5-uqcr

vulnerability	VCID-qfam-11ye-tkd8

vulnerability	VCID-wcc9-n2hm-87fx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.4.10-1jpp.3%3Farch=el7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1376.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1376.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-1376

reference_id

reference_type

scores

value	0.0082
scoring_system	epss
scoring_elements	0.74337
published_at	2026-04-01T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74453
published_at	2026-04-24T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74429
published_at	2026-04-18T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74419
published_at	2026-04-21T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74342
published_at	2026-04-02T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74369
published_at	2026-04-04T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74343
published_at	2026-04-07T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74375
published_at	2026-04-08T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74391
published_at	2026-04-09T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74412
published_at	2026-04-11T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74392
published_at	2026-04-12T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74384
published_at	2026-04-13T12:55:00Z

value	0.0082
scoring_system	epss
scoring_elements	0.74421
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-1376

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1483736
reference_id	1483736
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1483736

reference_url	https://access.redhat.com/errata/RHSA-2017:2469
reference_id	RHSA-2017:2469
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2469

reference_url	https://access.redhat.com/errata/RHSA-2017:2481
reference_id	RHSA-2017:2481
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2481

Weaknesses

Exploits

Severity_range_score 7.5 - 9.8

Exploitability 0.5

Weighted_severity 8.8

Risk_score 4.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7gwj-3x98-rqdp

Vulnerability Instance