{"url":"http://public2.vulnerablecode.io/api/packages/122557?format=json","purl":"pkg:rpm/redhat/libtasn1@3.3-5?arch=el7_0","type":"rpm","namespace":"redhat","name":"libtasn1","version":"3.3-5","qualifiers":{"arch":"el7_0"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/35992?format=json","vulnerability_id":"VCID-f69k-zy45-uued","summary":"Multiple vulnerabilities have been discovered in GNU Libtasn1, the\n    worse of which can allow a context-dependent attacker to cause a Denial of\n    Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3469.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3469.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3469","reference_id":"","reference_type":"","scores":[{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92418","published_at":"2026-04-01T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92425","published_at":"2026-04-02T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92433","published_at":"2026-04-04T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92436","published_at":"2026-04-07T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92447","published_at":"2026-04-08T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92452","published_at":"2026-04-09T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92458","published_at":"2026-04-11T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.9246","published_at":"2026-04-12T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92459","published_at":"2026-04-13T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92469","published_at":"2026-04-18T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92472","published_at":"2026-04-29T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92474","published_at":"2026-04-24T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92476","published_at":"2026-04-26T12:55:00Z"},{"value":"0.08667","scoring_system":"epss","scoring_elements":"0.92482","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3469"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1102329","reference_id":"1102329","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1102329"},{"reference_url":"https://security.gentoo.org/glsa/201408-09","reference_id":"GLSA-201408-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201408-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0594","reference_id":"RHSA-2014:0594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0596","reference_id":"RHSA-2014:0596","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0596"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0687","reference_id":"RHSA-2014:0687","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0687"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0815","reference_id":"RHSA-2014:0815","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0815"},{"reference_url":"https://usn.ubuntu.com/2294-1/","reference_id":"USN-2294-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2294-1/"}],"fixed_packages":[],"aliases":["CVE-2014-3469"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f69k-zy45-uued"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/35990?format=json","vulnerability_id":"VCID-k6ay-ezmy-gkgj","summary":"Multiple vulnerabilities have been discovered in GNU Libtasn1, the\n    worse of which can allow a context-dependent attacker to cause a Denial of\n    Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3467.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3467.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3467","reference_id":"","reference_type":"","scores":[{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91289","published_at":"2026-04-01T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91294","published_at":"2026-04-02T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91305","published_at":"2026-04-04T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91312","published_at":"2026-04-07T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91324","published_at":"2026-04-08T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.9133","published_at":"2026-04-09T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91337","published_at":"2026-04-11T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91339","published_at":"2026-04-12T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91338","published_at":"2026-04-13T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91363","published_at":"2026-04-16T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91362","published_at":"2026-04-18T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91364","published_at":"2026-04-21T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91373","published_at":"2026-04-24T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91372","published_at":"2026-04-29T12:55:00Z"},{"value":"0.06825","scoring_system":"epss","scoring_elements":"0.91386","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3467"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1102022","reference_id":"1102022","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1102022"},{"reference_url":"https://security.gentoo.org/glsa/201408-09","reference_id":"GLSA-201408-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201408-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0594","reference_id":"RHSA-2014:0594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0596","reference_id":"RHSA-2014:0596","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0596"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0687","reference_id":"RHSA-2014:0687","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0687"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0815","reference_id":"RHSA-2014:0815","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0815"},{"reference_url":"https://usn.ubuntu.com/2294-1/","reference_id":"USN-2294-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2294-1/"}],"fixed_packages":[],"aliases":["CVE-2014-3467"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k6ay-ezmy-gkgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/35991?format=json","vulnerability_id":"VCID-qawp-nzw5-8ud5","summary":"Multiple vulnerabilities have been discovered in GNU Libtasn1, the\n    worse of which can allow a context-dependent attacker to cause a Denial of\n    Service condition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3468.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3468.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3468","reference_id":"","reference_type":"","scores":[{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93303","published_at":"2026-04-01T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93311","published_at":"2026-04-02T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93317","published_at":"2026-04-04T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93315","published_at":"2026-04-07T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93324","published_at":"2026-04-08T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93328","published_at":"2026-04-09T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93333","published_at":"2026-04-11T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93331","published_at":"2026-04-12T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93332","published_at":"2026-04-13T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.9335","published_at":"2026-04-16T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93355","published_at":"2026-04-18T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93362","published_at":"2026-04-26T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93366","published_at":"2026-04-24T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.9336","published_at":"2026-04-29T12:55:00Z"},{"value":"0.10744","scoring_system":"epss","scoring_elements":"0.93367","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3468"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3467"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3468"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3469"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1102323","reference_id":"1102323","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1102323"},{"reference_url":"https://security.gentoo.org/glsa/201408-09","reference_id":"GLSA-201408-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201408-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0594","reference_id":"RHSA-2014:0594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0596","reference_id":"RHSA-2014:0596","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0596"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0687","reference_id":"RHSA-2014:0687","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0687"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0815","reference_id":"RHSA-2014:0815","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0815"},{"reference_url":"https://usn.ubuntu.com/2294-1/","reference_id":"USN-2294-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2294-1/"}],"fixed_packages":[],"aliases":["CVE-2014-3468"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qawp-nzw5-8ud5"}],"fixing_vulnerabilities":[],"risk_score":"0.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libtasn1@3.3-5%3Farch=el7_0"}