VulnerableCode Package Details - pkg:deb/debian/libcommons-collections3-java@3.2.1-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-32uq-r1e7-3ub4 Aliases: CVE-2015-7501 GHSA-fjq5-5j5f-mvxh	InvokerTransformer code execution during deserialization This package allows code execution when deserializing objects involving a specially constructed chain of classes. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using the commons-collections library.	3.2.2-1 Affected by 0 other vulnerabilities.
VCID-xzvn-b7db-jfah Aliases: DSA-3403-1 libcommons-collections3-java	security update	3.2.1-5+deb7u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 3.2.1-7+deb8u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-32uq-r1e7-3ub4
Aliases:
CVE-2015-7501
GHSA-fjq5-5j5f-mvxh

InvokerTransformer code execution during deserialization This package allows code execution when deserializing objects involving a specially constructed chain of classes. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using the commons-collections library.

3.2.2-1
Affected by 0 other vulnerabilities.

VCID-xzvn-b7db-jfah
Aliases:
DSA-3403-1 libcommons-collections3-java

security update

3.2.1-5+deb7u1
Affected by 2 other vulnerabilities.

3.2.1-7+deb8u1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:50:41.040253+00:00	Debian Oval Importer	Affected by	VCID-32uq-r1e7-3ub4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:03:35.191244+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T12:59:33.378020+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-11T23:25:06.141579+00:00	Debian Oval Importer	Affected by	VCID-32uq-r1e7-3ub4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T13:52:12.863202+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T12:48:14.528250+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-08T22:58:13.071592+00:00	Debian Oval Importer	Affected by	VCID-32uq-r1e7-3ub4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T22:27:18.485543+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-03T22:04:29.399590+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-02T13:07:02.547608+00:00	Debian Oval Importer	Affected by	VCID-xzvn-b7db-jfah	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.0.0