Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main

Type apk

Namespace alpine

Name dnsmasq

Version 2.78-r0

Qualifiers

arch	x86_64
distroversion	v3.17
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.79-r0

Latest_non_vulnerable_version 2.90-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-2anp-1f3u-b7ea

vulnerability_id VCID-2anp-1f3u-b7ea

summary In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13704.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13704.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-13704

reference_id

reference_type

scores

value	0.77786
scoring_system	epss
scoring_elements	0.99021
published_at	2026-06-11T12:55:00Z

value	0.77786
scoring_system	epss
scoring_elements	0.99025
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-13704

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13704
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13704

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495510
reference_id	1495510
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495510

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877102
reference_id	877102
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877102

fixed_packages

url	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

aliases CVE-2017-13704

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2anp-1f3u-b7ea

url VCID-49pt-bsyr-abgq

vulnerability_id VCID-49pt-bsyr-abgq

summary

Multiple vulnerabilities have been found in Dnsmasq, the worst of
    which may allow remote attackers to execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14496.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14496.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14496

reference_id

reference_type

scores

value	0.1642
scoring_system	epss
scoring_elements	0.95032
published_at	2026-06-11T12:55:00Z

value	0.1642
scoring_system	epss
scoring_elements	0.95048
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14496

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14496
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14496

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495416
reference_id	1495416
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495416

reference_url	https://security.archlinux.org/ASA-201710-1
reference_id	ASA-201710-1
reference_type
scores
url	https://security.archlinux.org/ASA-201710-1

reference_url

https://security.archlinux.org/AVG-421

reference_id

AVG-421

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-421

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42946.py
reference_id	CVE-2017-14496
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42946.py

reference_url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14496.py
reference_id	CVE-2017-14496
reference_type	exploit
scores
url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14496.py

reference_url	https://security.gentoo.org/glsa/201710-27
reference_id	GLSA-201710-27
reference_type
scores
url	https://security.gentoo.org/glsa/201710-27

reference_url	https://access.redhat.com/errata/RHSA-2017:2836
reference_id	RHSA-2017:2836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2836

reference_url	https://usn.ubuntu.com/3430-1/
reference_id	USN-3430-1
reference_type
scores
url	https://usn.ubuntu.com/3430-1/

reference_url	https://usn.ubuntu.com/3430-2/
reference_id	USN-3430-2
reference_type
scores
url	https://usn.ubuntu.com/3430-2/

fixed_packages

url	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

aliases CVE-2017-14496

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-49pt-bsyr-abgq

url VCID-557y-a79w-tfbz

vulnerability_id VCID-557y-a79w-tfbz

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14495.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14495.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14495

reference_id

reference_type

scores

value	0.49056
scoring_system	epss
scoring_elements	0.97838
published_at	2026-06-11T12:55:00Z

value	0.49056
scoring_system	epss
scoring_elements	0.97848
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14495

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14495
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14495

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:C

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495415
reference_id	1495415
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495415

reference_url	https://security.archlinux.org/ASA-201710-1
reference_id	ASA-201710-1
reference_type
scores
url	https://security.archlinux.org/ASA-201710-1

reference_url

https://security.archlinux.org/AVG-421

reference_id

AVG-421

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-421

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42945.py
reference_id	CVE-2017-14495
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42945.py

reference_url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14495.py
reference_id	CVE-2017-14495
reference_type	exploit
scores
url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14495.py

reference_url	https://security.gentoo.org/glsa/201710-27
reference_id	GLSA-201710-27
reference_type
scores
url	https://security.gentoo.org/glsa/201710-27

reference_url	https://access.redhat.com/errata/RHSA-2017:2836
reference_id	RHSA-2017:2836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2836

reference_url	https://usn.ubuntu.com/3430-1/
reference_id	USN-3430-1
reference_type
scores
url	https://usn.ubuntu.com/3430-1/

reference_url	https://usn.ubuntu.com/3430-2/
reference_id	USN-3430-2
reference_type
scores
url	https://usn.ubuntu.com/3430-2/

fixed_packages

url	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

aliases CVE-2017-14495

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-557y-a79w-tfbz

url VCID-aju2-ajgk-43a8

vulnerability_id VCID-aju2-ajgk-43a8

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14491.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14491.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14491

reference_id

reference_type

scores

value	0.3372
scoring_system	epss
scoring_elements	0.97059
published_at	2026-06-11T12:55:00Z

value	0.3372
scoring_system	epss
scoring_elements	0.97068
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14491

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:P/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495409
reference_id	1495409
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495409

reference_url	https://security.archlinux.org/ASA-201710-1
reference_id	ASA-201710-1
reference_type
scores
url	https://security.archlinux.org/ASA-201710-1

reference_url

https://security.archlinux.org/AVG-421

reference_id

AVG-421

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-421

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42941.py
reference_id	CVE-2017-14491
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42941.py

reference_url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14491.py
reference_id	CVE-2017-14491
reference_type	exploit
scores
url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14491.py

reference_url	https://security.gentoo.org/glsa/201710-27
reference_id	GLSA-201710-27
reference_type
scores
url	https://security.gentoo.org/glsa/201710-27

reference_url	https://access.redhat.com/errata/RHSA-2017:2836
reference_id	RHSA-2017:2836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2836

reference_url	https://access.redhat.com/errata/RHSA-2017:2837
reference_id	RHSA-2017:2837
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2837

reference_url	https://access.redhat.com/errata/RHSA-2017:2838
reference_id	RHSA-2017:2838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2838

reference_url	https://access.redhat.com/errata/RHSA-2017:2839
reference_id	RHSA-2017:2839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2839

reference_url	https://access.redhat.com/errata/RHSA-2017:2840
reference_id	RHSA-2017:2840
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2840

reference_url	https://access.redhat.com/errata/RHSA-2017:2841
reference_id	RHSA-2017:2841
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2841

reference_url	https://usn.ubuntu.com/3430-1/
reference_id	USN-3430-1
reference_type
scores
url	https://usn.ubuntu.com/3430-1/

reference_url	https://usn.ubuntu.com/3430-2/
reference_id	USN-3430-2
reference_type
scores
url	https://usn.ubuntu.com/3430-2/

fixed_packages

url	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

aliases CVE-2017-14491

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aju2-ajgk-43a8

url VCID-sut5-b1ac-byeq

vulnerability_id VCID-sut5-b1ac-byeq

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14494.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14494.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14494

reference_id

reference_type

scores

value	0.08297
scoring_system	epss
scoring_elements	0.9244
published_at	2026-06-11T12:55:00Z

value	0.08297
scoring_system	epss
scoring_elements	0.92466
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14494

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv2
scoring_elements	AV:A/AC:L/Au:N/C:P/I:N/A:N

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495412
reference_id	1495412
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495412

reference_url	https://security.archlinux.org/ASA-201710-1
reference_id	ASA-201710-1
reference_type
scores
url	https://security.archlinux.org/ASA-201710-1

reference_url

https://security.archlinux.org/AVG-421

reference_id

AVG-421

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-421

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42944.py
reference_id	CVE-2017-14494
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42944.py

reference_url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14494.py
reference_id	CVE-2017-14494
reference_type	exploit
scores
url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14494.py

reference_url	https://security.gentoo.org/glsa/201710-27
reference_id	GLSA-201710-27
reference_type
scores
url	https://security.gentoo.org/glsa/201710-27

reference_url	https://access.redhat.com/errata/RHSA-2017:2836
reference_id	RHSA-2017:2836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2836

reference_url	https://access.redhat.com/errata/RHSA-2017:2837
reference_id	RHSA-2017:2837
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2837

reference_url	https://usn.ubuntu.com/3430-1/
reference_id	USN-3430-1
reference_type
scores
url	https://usn.ubuntu.com/3430-1/

reference_url	https://usn.ubuntu.com/3430-2/
reference_id	USN-3430-2
reference_type
scores
url	https://usn.ubuntu.com/3430-2/

fixed_packages

url	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

aliases CVE-2017-14494

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sut5-b1ac-byeq

url VCID-u936-82u1-kkg1

vulnerability_id VCID-u936-82u1-kkg1

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14492.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14492.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14492

reference_id

reference_type

scores

value	0.93379
scoring_system	epss
scoring_elements	0.99824
published_at	2026-06-11T12:55:00Z

value	0.93379
scoring_system	epss
scoring_elements	0.99825
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14492

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14491

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14492

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14493

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14494

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv2
scoring_elements	AV:A/AC:L/Au:N/C:N/I:P/A:P

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1495410
reference_id	1495410
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1495410

reference_url	https://security.archlinux.org/ASA-201710-1
reference_id	ASA-201710-1
reference_type
scores
url	https://security.archlinux.org/ASA-201710-1

reference_url

https://security.archlinux.org/AVG-421

reference_id

AVG-421

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-421

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42942.py
reference_id	CVE-2017-14492
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/42942.py

reference_url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14492.py
reference_id	CVE-2017-14492
reference_type	exploit
scores
url	https://raw.githubusercontent.com/google/security-research-pocs/master/vulnerabilities/dnsmasq/CVE-2017-14492.py

reference_url	https://security.gentoo.org/glsa/201710-27
reference_id	GLSA-201710-27
reference_type
scores
url	https://security.gentoo.org/glsa/201710-27

reference_url	https://access.redhat.com/errata/RHSA-2017:2836
reference_id	RHSA-2017:2836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2836

reference_url	https://access.redhat.com/errata/RHSA-2017:2837
reference_id	RHSA-2017:2837
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2837

reference_url	https://usn.ubuntu.com/3430-1/
reference_id	USN-3430-1
reference_type
scores
url	https://usn.ubuntu.com/3430-1/

reference_url	https://usn.ubuntu.com/3430-2/
reference_id	USN-3430-2
reference_type
scores
url	https://usn.ubuntu.com/3430-2/

fixed_packages

url	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
purl	pkg:apk/alpine/dnsmasq@2.78-r0?arch=x86_64&distroversion=v3.17&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

aliases CVE-2017-14492

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u936-82u1-kkg1

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/dnsmasq@2.78-r0%3Farch=x86_64&distroversion=v3.17&reponame=main

Package Instance