Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/horizon@2014.1.1-3?distro=trixie
Typedeb
Namespacedebian
Namehorizon
Version2014.1.1-3
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version2014.1.2-3
Latest_non_vulnerable_version3:25.7.1-1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-dsg5-s5y9-nbe3
vulnerability_id VCID-dsg5-s5y9-nbe3
summary 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in the Horizon Orchestration dashboard in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2, when used with Heat, allows remote Orchestration template owners or catalogs to inject arbitrary web script or HTML via a crafted template.
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
1
reference_url https://access.redhat.com/errata/RHSA-2014:0939
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2014:0939
2
reference_url https://access.redhat.com/errata/RHSA-2014:1188
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2014:1188
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3473.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3473.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3473
reference_id
reference_type
scores
0
value 0.004
scoring_system epss
scoring_elements 0.60698
published_at 2026-04-08T12:55:00Z
1
value 0.004
scoring_system epss
scoring_elements 0.60738
published_at 2026-04-11T12:55:00Z
2
value 0.004
scoring_system epss
scoring_elements 0.60577
published_at 2026-04-01T12:55:00Z
3
value 0.004
scoring_system epss
scoring_elements 0.60652
published_at 2026-04-02T12:55:00Z
4
value 0.004
scoring_system epss
scoring_elements 0.6068
published_at 2026-04-04T12:55:00Z
5
value 0.004
scoring_system epss
scoring_elements 0.60649
published_at 2026-04-07T12:55:00Z
6
value 0.004
scoring_system epss
scoring_elements 0.60713
published_at 2026-04-09T12:55:00Z
7
value 0.004
scoring_system epss
scoring_elements 0.60705
published_at 2026-04-13T12:55:00Z
8
value 0.004
scoring_system epss
scoring_elements 0.60725
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3473
5
reference_url https://bugs.launchpad.net/horizon/+bug/1308727
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/horizon/+bug/1308727
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1116090
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1116090
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3473
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3473
8
reference_url https://github.com/openstack/horizon/commit/c844bd692894353c60b320005b804970605e910f
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/c844bd692894353c60b320005b804970605e910f
9
reference_url https://github.com/openstack/horizon/commit/de4466d88b816437fb29eff5ab23b9b964cd3985
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/de4466d88b816437fb29eff5ab23b9b964cd3985
10
reference_url https://opendev.org/openstack/horizon
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://opendev.org/openstack/horizon
11
reference_url http://www.openwall.com/lists/oss-security/2014/07/08/6
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2014/07/08/6
12
reference_url http://www.securityfocus.com/bid/68459
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/68459
13
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754255
reference_id 754255
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754255
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
17
reference_url https://access.redhat.com/security/cve/CVE-2014-3473
reference_id CVE-2014-3473
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2014-3473
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-3473
reference_id CVE-2014-3473
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:P/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-3473
19
reference_url https://github.com/advisories/GHSA-8vwv-2v7v-jmgr
reference_id GHSA-8vwv-2v7v-jmgr
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8vwv-2v7v-jmgr
20
reference_url https://usn.ubuntu.com/2323-1/
reference_id USN-2323-1
reference_type
scores
url https://usn.ubuntu.com/2323-1/
fixed_packages
0
url pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
purl pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@2014.1.1-3%3Fdistro=trixie
1
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:23.0.0-5%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
purl pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.3.0-3%3Fdistro=trixie
4
url pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
purl pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.7.1-1%3Fdistro=trixie
aliases CVE-2014-3473, GHSA-8vwv-2v7v-jmgr
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dsg5-s5y9-nbe3
1
url VCID-n2fx-xctw-r7fr
vulnerability_id VCID-n2fx-xctw-r7fr
summary openstack-horizon: multiple XSS flaws
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8578.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8578.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-8578
reference_id
reference_type
scores
0
value 0.00317
scoring_system epss
scoring_elements 0.5479
published_at 2026-04-13T12:55:00Z
1
value 0.00317
scoring_system epss
scoring_elements 0.5471
published_at 2026-04-01T12:55:00Z
2
value 0.00317
scoring_system epss
scoring_elements 0.54779
published_at 2026-04-02T12:55:00Z
3
value 0.00317
scoring_system epss
scoring_elements 0.54801
published_at 2026-04-04T12:55:00Z
4
value 0.00317
scoring_system epss
scoring_elements 0.54771
published_at 2026-04-07T12:55:00Z
5
value 0.00317
scoring_system epss
scoring_elements 0.54821
published_at 2026-04-08T12:55:00Z
6
value 0.00317
scoring_system epss
scoring_elements 0.54818
published_at 2026-04-09T12:55:00Z
7
value 0.00317
scoring_system epss
scoring_elements 0.54829
published_at 2026-04-11T12:55:00Z
8
value 0.00317
scoring_system epss
scoring_elements 0.54812
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-8578
2
reference_url https://bugs.launchpad.net/horizon/+bug/1320235
reference_id
reference_type
scores
url https://bugs.launchpad.net/horizon/+bug/1320235
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8578
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8578
4
reference_url http://www.openwall.com/lists/oss-security/2014/07/08/6
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2014/07/08/6
5
reference_url http://www.securityfocus.com/bid/68456
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/68456
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-8578
reference_id CVE-2014-8578
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2014-8578
fixed_packages
0
url pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
purl pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@2014.1.1-3%3Fdistro=trixie
1
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:23.0.0-5%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
purl pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.3.0-3%3Fdistro=trixie
4
url pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
purl pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.7.1-1%3Fdistro=trixie
aliases CVE-2014-8578
risk_score 1.6
exploitability 0.5
weighted_severity 3.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n2fx-xctw-r7fr
2
url VCID-tngh-mgyc-xka4
vulnerability_id VCID-tngh-mgyc-xka4
summary openstack-horizon: multiple XSS flaws
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3475.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3475.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3475
reference_id
reference_type
scores
0
value 0.00359
scoring_system epss
scoring_elements 0.58132
published_at 2026-04-13T12:55:00Z
1
value 0.00359
scoring_system epss
scoring_elements 0.58021
published_at 2026-04-01T12:55:00Z
2
value 0.00359
scoring_system epss
scoring_elements 0.58106
published_at 2026-04-02T12:55:00Z
3
value 0.00359
scoring_system epss
scoring_elements 0.58127
published_at 2026-04-04T12:55:00Z
4
value 0.00359
scoring_system epss
scoring_elements 0.58101
published_at 2026-04-07T12:55:00Z
5
value 0.00359
scoring_system epss
scoring_elements 0.58156
published_at 2026-04-08T12:55:00Z
6
value 0.00359
scoring_system epss
scoring_elements 0.5816
published_at 2026-04-09T12:55:00Z
7
value 0.00359
scoring_system epss
scoring_elements 0.58175
published_at 2026-04-11T12:55:00Z
8
value 0.00359
scoring_system epss
scoring_elements 0.58152
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3475
3
reference_url https://bugs.launchpad.net/horizon/+bug/1320235
reference_id
reference_type
scores
url https://bugs.launchpad.net/horizon/+bug/1320235
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3475
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3475
5
reference_url http://www.openwall.com/lists/oss-security/2014/07/08/6
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2014/07/08/6
6
reference_url http://www.securityfocus.com/bid/68456
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/68456
7
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754255
reference_id 754255
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754255
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-3475
reference_id CVE-2014-3475
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
url https://nvd.nist.gov/vuln/detail/CVE-2014-3475
12
reference_url https://usn.ubuntu.com/2323-1/
reference_id USN-2323-1
reference_type
scores
url https://usn.ubuntu.com/2323-1/
fixed_packages
0
url pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
purl pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@2014.1.1-3%3Fdistro=trixie
1
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:23.0.0-5%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
purl pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.3.0-3%3Fdistro=trixie
4
url pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
purl pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.7.1-1%3Fdistro=trixie
aliases CVE-2014-3475
risk_score 1.6
exploitability 0.5
weighted_severity 3.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tngh-mgyc-xka4
3
url VCID-zxjy-82n2-mkdb
vulnerability_id VCID-zxjy-82n2-mkdb
summary 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross-site scripting (XSS) vulnerability in horizon/static/horizon/js/horizon.instances.js in the Launch Instance menu in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to inject arbitrary web script or HTML via a network name.
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2015-01/msg00040.html
1
reference_url https://access.redhat.com/errata/RHSA-2014:0939
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2014:0939
2
reference_url https://access.redhat.com/errata/RHSA-2014:1188
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2014:1188
3
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3474.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3474.json
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3474
reference_id
reference_type
scores
0
value 0.00303
scoring_system epss
scoring_elements 0.53617
published_at 2026-04-13T12:55:00Z
1
value 0.00303
scoring_system epss
scoring_elements 0.53539
published_at 2026-04-01T12:55:00Z
2
value 0.00303
scoring_system epss
scoring_elements 0.53561
published_at 2026-04-02T12:55:00Z
3
value 0.00303
scoring_system epss
scoring_elements 0.53588
published_at 2026-04-04T12:55:00Z
4
value 0.00303
scoring_system epss
scoring_elements 0.53556
published_at 2026-04-07T12:55:00Z
5
value 0.00303
scoring_system epss
scoring_elements 0.53606
published_at 2026-04-08T12:55:00Z
6
value 0.00303
scoring_system epss
scoring_elements 0.53602
published_at 2026-04-09T12:55:00Z
7
value 0.00303
scoring_system epss
scoring_elements 0.53651
published_at 2026-04-11T12:55:00Z
8
value 0.00303
scoring_system epss
scoring_elements 0.53634
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3474
5
reference_url https://bugs.launchpad.net/horizon/+bug/1322197
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://bugs.launchpad.net/horizon/+bug/1322197
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1116090
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1116090
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3474
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3474
8
reference_url https://github.com/openstack/horizon/commit/32a7b713468161282f2ea01d5e2faff980d924cd
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/32a7b713468161282f2ea01d5e2faff980d924cd
9
reference_url https://github.com/openstack/horizon/commit/c844bd692894353c60b320005b804970605e910f
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/c844bd692894353c60b320005b804970605e910f
10
reference_url https://github.com/openstack/horizon/commit/de4466d88b816437fb29eff5ab23b9b964cd3985
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/openstack/horizon/commit/de4466d88b816437fb29eff5ab23b9b964cd3985
11
reference_url https://opendev.org/openstack/horizon
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://opendev.org/openstack/horizon
12
reference_url https://review.opendev.org/c/openstack/horizon/+/105476
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://review.opendev.org/c/openstack/horizon/+/105476
13
reference_url https://review.openstack.org/#/c/105477
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://review.openstack.org/#/c/105477
14
reference_url http://www.openwall.com/lists/oss-security/2014/07/08/6
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2014/07/08/6
15
reference_url http://www.securityfocus.com/bid/68460
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/68460
16
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754255
reference_id 754255
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=754255
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:*:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openstack:horizon:juno-1:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
20
reference_url https://access.redhat.com/security/cve/CVE-2014-3474
reference_id CVE-2014-3474
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2014-3474
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-3474
reference_id CVE-2014-3474
reference_type
scores
0
value 3.5
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:S/C:N/I:P/A:N
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-3474
22
reference_url https://github.com/advisories/GHSA-j57p-g33w-95c5
reference_id GHSA-j57p-g33w-95c5
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j57p-g33w-95c5
23
reference_url https://usn.ubuntu.com/2323-1/
reference_id USN-2323-1
reference_type
scores
url https://usn.ubuntu.com/2323-1/
fixed_packages
0
url pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
purl pkg:deb/debian/horizon@2014.1.1-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@2014.1.1-3%3Fdistro=trixie
1
url pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/horizon@3:18.6.2-5%2Bdeb11u2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:18.6.2-5%252Bdeb11u2%3Fdistro=trixie
2
url pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/horizon@3:23.0.0-5%2Bdeb12u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:23.0.0-5%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
purl pkg:deb/debian/horizon@3:25.3.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.3.0-3%3Fdistro=trixie
4
url pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
purl pkg:deb/debian/horizon@3:25.7.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@3:25.7.1-1%3Fdistro=trixie
aliases CVE-2014-3474, GHSA-j57p-g33w-95c5
risk_score 1.6
exploitability 0.5
weighted_severity 3.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zxjy-82n2-mkdb
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/horizon@2014.1.1-3%3Fdistro=trixie