Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-d9gp-4hm3-h7dc

Summary

Multiple vulnerabilities have been found in Oracle's JRE and JDK
    software suites allowing remote attackers to remotely execute arbitrary
    code, obtain information, and cause Denial of Service.

Aliases

alias	CVE-2015-4901

Fixed_packages

url	pkg:deb/debian/openjfx@8u91-b14-1?distro=trixie
purl	pkg:deb/debian/openjfx@8u91-b14-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjfx@8u91-b14-1%3Fdistro=trixie

url	pkg:deb/debian/openjfx@11.0.11%2B0-1?distro=trixie
purl	pkg:deb/debian/openjfx@11.0.11%2B0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjfx@11.0.11%252B0-1%3Fdistro=trixie

url	pkg:deb/debian/openjfx@11.0.11%2B1-3?distro=trixie
purl	pkg:deb/debian/openjfx@11.0.11%2B1-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjfx@11.0.11%252B1-3%3Fdistro=trixie

url	pkg:deb/debian/openjfx@11.0.11%2B1-7?distro=trixie
purl	pkg:deb/debian/openjfx@11.0.11%2B1-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openjfx@11.0.11%252B1-7%3Fdistro=trixie

url	pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72
purl	pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jdk-bin@1.8.0.72

url	pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72
purl	pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-java/oracle-jre-bin@1.8.0.72

Affected_packages

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el6_7

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1m2k-jt6j-kyam

vulnerability	VCID-5u17-kgsw-akar

vulnerability	VCID-6and-3vws-p3hu

vulnerability	VCID-6y1r-9shn-abdp

vulnerability	VCID-7y2q-c6xs-nbex

vulnerability	VCID-9gpf-rkqa-2fb4

vulnerability	VCID-a326-kbt5-h7bp

vulnerability	VCID-au4s-5j9w-nybx

vulnerability	VCID-b9wa-u375-xuef

vulnerability	VCID-d9gp-4hm3-h7dc

vulnerability	VCID-ds2p-83xe-dfdm

vulnerability	VCID-e4dr-2bah-k7bp

vulnerability	VCID-edcu-48sn-ufbj

vulnerability	VCID-j8w9-x9f9-hfec

vulnerability	VCID-kahp-6ybn-9yax

vulnerability	VCID-knv6-1uv9-yfcy

vulnerability	VCID-nv52-jzcr-37ay

vulnerability	VCID-qb56-zfz8-4bev

vulnerability	VCID-r691-77bt-skhe

vulnerability	VCID-t1yx-brps-4yhe

vulnerability	VCID-tet1-snjs-tbfb

vulnerability	VCID-u4vm-t9jm-2yfv

vulnerability	VCID-u5jr-jf83-gbbb

vulnerability	VCID-vf65-ugfc-nueg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3%3Farch=el6_7

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el7_1

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3?arch=el7_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1m2k-jt6j-kyam

vulnerability	VCID-5u17-kgsw-akar

vulnerability	VCID-6and-3vws-p3hu

vulnerability	VCID-6y1r-9shn-abdp

vulnerability	VCID-7y2q-c6xs-nbex

vulnerability	VCID-9gpf-rkqa-2fb4

vulnerability	VCID-a326-kbt5-h7bp

vulnerability	VCID-au4s-5j9w-nybx

vulnerability	VCID-b9wa-u375-xuef

vulnerability	VCID-d9gp-4hm3-h7dc

vulnerability	VCID-ds2p-83xe-dfdm

vulnerability	VCID-e4dr-2bah-k7bp

vulnerability	VCID-edcu-48sn-ufbj

vulnerability	VCID-j8w9-x9f9-hfec

vulnerability	VCID-kahp-6ybn-9yax

vulnerability	VCID-knv6-1uv9-yfcy

vulnerability	VCID-nv52-jzcr-37ay

vulnerability	VCID-qb56-zfz8-4bev

vulnerability	VCID-r691-77bt-skhe

vulnerability	VCID-t1yx-brps-4yhe

vulnerability	VCID-tet1-snjs-tbfb

vulnerability	VCID-u4vm-t9jm-2yfv

vulnerability	VCID-u5jr-jf83-gbbb

vulnerability	VCID-vf65-ugfc-nueg

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.65-1jpp.3%3Farch=el7_1

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00009.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-01/msg00045.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1926.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1926.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4901.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4901.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-4901

reference_id

reference_type

scores

value	0.00884
scoring_system	epss
scoring_elements	0.7542
published_at	2026-04-13T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75365
published_at	2026-04-01T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75368
published_at	2026-04-02T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75401
published_at	2026-04-04T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.7538
published_at	2026-04-07T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75423
published_at	2026-04-08T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75433
published_at	2026-04-09T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75453
published_at	2026-04-11T12:55:00Z

value	0.00884
scoring_system	epss
scoring_elements	0.75431
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-4901

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4901
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4901

reference_url	http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html

reference_url	http://www.securityfocus.com/bid/77226
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/77226

reference_url	http://www.securitytracker.com/id/1033884
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1033884

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1273856
reference_id	1273856
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1273856

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823622
reference_id	823622
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=823622

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update60::::::
reference_id	cpe:2.3:a:oracle:jdk:1.8.0:update60::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jdk:1.8.0:update60::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update_60::::::
reference_id	cpe:2.3:a:oracle:jre:1.8.0:update_60::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:jre:1.8.0:update_60::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-4901

reference_id

CVE-2015-4901

reference_type

scores

value	9.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2015-4901

reference_url	https://security.gentoo.org/glsa/201603-11
reference_id	GLSA-201603-11
reference_type
scores
url	https://security.gentoo.org/glsa/201603-11

reference_url	https://access.redhat.com/errata/RHSA-2015:1926
reference_id	RHSA-2015:1926
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1926

Weaknesses

Exploits

Severity_range_score 9.3 - 9.3

Exploitability 0.5

Weighted_severity 8.4

Risk_score 4.2

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d9gp-4hm3-h7dc

Vulnerability Instance