Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
Typeapk
Namespacealpine
Namewireshark
Version2.6.2-r0
Qualifiers
arch s390x
distroversion v3.18
reponame community
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2.6.3-r0
Latest_non_vulnerable_version4.0.11-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-3vsx-8aqr-ykfu
vulnerability_id VCID-3vsx-8aqr-ykfu
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14342.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14342.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14342
reference_id
reference_type
scores
0
value 0.01963
scoring_system epss
scoring_elements 0.8384
published_at 2026-06-04T12:55:00Z
1
value 0.01963
scoring_system epss
scoring_elements 0.83864
published_at 2026-06-05T12:55:00Z
2
value 0.01963
scoring_system epss
scoring_elements 0.83866
published_at 2026-06-06T12:55:00Z
3
value 0.01963
scoring_system epss
scoring_elements 0.83862
published_at 2026-06-07T12:55:00Z
4
value 0.01963
scoring_system epss
scoring_elements 0.83852
published_at 2026-06-08T12:55:00Z
5
value 0.01963
scoring_system epss
scoring_elements 0.83867
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14342
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14342
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14342
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607321
reference_id 1607321
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607321
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14342
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3vsx-8aqr-ykfu
1
url VCID-97nz-ydsf-afh9
vulnerability_id VCID-97nz-ydsf-afh9
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over-read.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14344.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14344.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14344
reference_id
reference_type
scores
0
value 0.00948
scoring_system epss
scoring_elements 0.76696
published_at 2026-06-04T12:55:00Z
1
value 0.00948
scoring_system epss
scoring_elements 0.76726
published_at 2026-06-05T12:55:00Z
2
value 0.00948
scoring_system epss
scoring_elements 0.7671
published_at 2026-06-08T12:55:00Z
3
value 0.00948
scoring_system epss
scoring_elements 0.76732
published_at 2026-06-09T12:55:00Z
4
value 0.00948
scoring_system epss
scoring_elements 0.76721
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14344
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14344
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14344
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607322
reference_id 1607322
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607322
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14344
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-97nz-ydsf-afh9
2
url VCID-bmgk-dpnm-2fba
vulnerability_id VCID-bmgk-dpnm-2fba
summary In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14370.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14370.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14370
reference_id
reference_type
scores
0
value 0.00498
scoring_system epss
scoring_elements 0.66234
published_at 2026-06-04T12:55:00Z
1
value 0.00498
scoring_system epss
scoring_elements 0.66286
published_at 2026-06-05T12:55:00Z
2
value 0.00498
scoring_system epss
scoring_elements 0.66295
published_at 2026-06-06T12:55:00Z
3
value 0.00498
scoring_system epss
scoring_elements 0.66278
published_at 2026-06-07T12:55:00Z
4
value 0.00498
scoring_system epss
scoring_elements 0.66265
published_at 2026-06-08T12:55:00Z
5
value 0.00498
scoring_system epss
scoring_elements 0.66283
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14370
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14370
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14370
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607331
reference_id 1607331
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607331
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14370
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bmgk-dpnm-2fba
3
url VCID-cked-ew5q-cqbc
vulnerability_id VCID-cked-ew5q-cqbc
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/dissectors/packet-http2.c by verifying that header data was found before proceeding to header decompression.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14369.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14369.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14369
reference_id
reference_type
scores
0
value 0.01225
scoring_system epss
scoring_elements 0.79464
published_at 2026-06-04T12:55:00Z
1
value 0.01225
scoring_system epss
scoring_elements 0.79492
published_at 2026-06-05T12:55:00Z
2
value 0.01225
scoring_system epss
scoring_elements 0.79497
published_at 2026-06-06T12:55:00Z
3
value 0.01225
scoring_system epss
scoring_elements 0.7949
published_at 2026-06-07T12:55:00Z
4
value 0.01225
scoring_system epss
scoring_elements 0.7948
published_at 2026-06-08T12:55:00Z
5
value 0.01225
scoring_system epss
scoring_elements 0.79498
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14369
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14369
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14369
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607328
reference_id 1607328
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607328
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14369
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cked-ew5q-cqbc
4
url VCID-h9vp-as83-b7fx
vulnerability_id VCID-h9vp-as83-b7fx
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14339.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14339.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14339
reference_id
reference_type
scores
0
value 0.02503
scoring_system epss
scoring_elements 0.85615
published_at 2026-06-04T12:55:00Z
1
value 0.02503
scoring_system epss
scoring_elements 0.85637
published_at 2026-06-05T12:55:00Z
2
value 0.02503
scoring_system epss
scoring_elements 0.85643
published_at 2026-06-06T12:55:00Z
3
value 0.02503
scoring_system epss
scoring_elements 0.85639
published_at 2026-06-07T12:55:00Z
4
value 0.02503
scoring_system epss
scoring_elements 0.85624
published_at 2026-06-08T12:55:00Z
5
value 0.02503
scoring_system epss
scoring_elements 0.85638
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14339
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14339
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14339
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607325
reference_id 1607325
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607325
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14339
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h9vp-as83-b7fx
5
url VCID-jstt-1ja2-efdy
vulnerability_id VCID-jstt-1ja2-efdy
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14340.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14340.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14340
reference_id
reference_type
scores
0
value 0.01095
scoring_system epss
scoring_elements 0.78325
published_at 2026-06-04T12:55:00Z
1
value 0.01095
scoring_system epss
scoring_elements 0.78351
published_at 2026-06-05T12:55:00Z
2
value 0.01095
scoring_system epss
scoring_elements 0.78359
published_at 2026-06-06T12:55:00Z
3
value 0.01095
scoring_system epss
scoring_elements 0.78349
published_at 2026-06-07T12:55:00Z
4
value 0.01095
scoring_system epss
scoring_elements 0.78337
published_at 2026-06-08T12:55:00Z
5
value 0.01095
scoring_system epss
scoring_elements 0.78354
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14340
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14340
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14340
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607323
reference_id 1607323
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607323
5
reference_url https://access.redhat.com/errata/RHSA-2020:1047
reference_id RHSA-2020:1047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1047
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14340
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jstt-1ja2-efdy
6
url VCID-jzmw-c9qn-ybf3
vulnerability_id VCID-jzmw-c9qn-ybf3
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14341.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14341.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14341
reference_id
reference_type
scores
0
value 0.01963
scoring_system epss
scoring_elements 0.8384
published_at 2026-06-04T12:55:00Z
1
value 0.01963
scoring_system epss
scoring_elements 0.83864
published_at 2026-06-05T12:55:00Z
2
value 0.01963
scoring_system epss
scoring_elements 0.83866
published_at 2026-06-06T12:55:00Z
3
value 0.01963
scoring_system epss
scoring_elements 0.83862
published_at 2026-06-07T12:55:00Z
4
value 0.01963
scoring_system epss
scoring_elements 0.83852
published_at 2026-06-08T12:55:00Z
5
value 0.01963
scoring_system epss
scoring_elements 0.83867
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14341
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14341
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14341
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607326
reference_id 1607326
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607326
5
reference_url https://access.redhat.com/errata/RHSA-2020:1047
reference_id RHSA-2020:1047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1047
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14341
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jzmw-c9qn-ybf3
7
url VCID-m5q3-hmp6-ebh3
vulnerability_id VCID-m5q3-hmp6-ebh3
summary In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/packet-coap.c by properly checking for a NULL condition.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14367.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14367.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14367
reference_id
reference_type
scores
0
value 0.00768
scoring_system epss
scoring_elements 0.73854
published_at 2026-06-04T12:55:00Z
1
value 0.00768
scoring_system epss
scoring_elements 0.73891
published_at 2026-06-09T12:55:00Z
2
value 0.00768
scoring_system epss
scoring_elements 0.73864
published_at 2026-06-08T12:55:00Z
3
value 0.00768
scoring_system epss
scoring_elements 0.73896
published_at 2026-06-06T12:55:00Z
4
value 0.00768
scoring_system epss
scoring_elements 0.73881
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14367
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14367
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14367
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607329
reference_id 1607329
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607329
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14367
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m5q3-hmp6-ebh3
8
url VCID-x33x-py3f-83f2
vulnerability_id VCID-x33x-py3f-83f2
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14343.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14343.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14343
reference_id
reference_type
scores
0
value 0.00808
scoring_system epss
scoring_elements 0.7456
published_at 2026-06-04T12:55:00Z
1
value 0.00808
scoring_system epss
scoring_elements 0.74591
published_at 2026-06-05T12:55:00Z
2
value 0.00808
scoring_system epss
scoring_elements 0.74596
published_at 2026-06-06T12:55:00Z
3
value 0.00808
scoring_system epss
scoring_elements 0.74585
published_at 2026-06-07T12:55:00Z
4
value 0.00808
scoring_system epss
scoring_elements 0.74567
published_at 2026-06-08T12:55:00Z
5
value 0.00808
scoring_system epss
scoring_elements 0.74594
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14343
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14343
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14343
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607324
reference_id 1607324
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607324
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14343
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x33x-py3f-83f2
9
url VCID-x6kc-4h61-3ffg
vulnerability_id VCID-x6kc-4h61-3ffg
summary In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14368.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14368.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-14368
reference_id
reference_type
scores
0
value 0.01963
scoring_system epss
scoring_elements 0.8384
published_at 2026-06-04T12:55:00Z
1
value 0.01963
scoring_system epss
scoring_elements 0.83864
published_at 2026-06-05T12:55:00Z
2
value 0.01963
scoring_system epss
scoring_elements 0.83866
published_at 2026-06-06T12:55:00Z
3
value 0.01963
scoring_system epss
scoring_elements 0.83862
published_at 2026-06-07T12:55:00Z
4
value 0.01963
scoring_system epss
scoring_elements 0.83852
published_at 2026-06-08T12:55:00Z
5
value 0.01963
scoring_system epss
scoring_elements 0.83867
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-14368
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14368
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14368
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1607327
reference_id 1607327
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1607327
5
reference_url https://access.redhat.com/errata/RHSA-2020:1047
reference_id RHSA-2020:1047
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1047
fixed_packages
0
url pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
purl pkg:apk/alpine/wireshark@2.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community
aliases CVE-2018-14368
risk_score 2.6
exploitability 0.5
weighted_severity 5.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x6kc-4h61-3ffg
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/wireshark@2.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community