Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-9mux-fuyc-a7dx

Summary

Multiple vulnerabilities have been found in Firefox, Thunderbird,
    Network Security Services (NSS), and NetScape Portable Runtime (NSPR) with
    the worst of which may allow remote execution of arbitrary code.

Aliases

alias	CVE-2016-1938

Fixed_packages

url	pkg:deb/debian/nss@2:3.21-1?distro=trixie
purl	pkg:deb/debian/nss@2:3.21-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.21-1%3Fdistro=trixie

url pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3

purl pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2zrv-q4tb-wqeg

vulnerability	VCID-46cy-x3cp-tke5

vulnerability	VCID-6fvj-phnx-kfgs

vulnerability	VCID-7msj-wyd6-zkbe

vulnerability	VCID-8qtg-h4km-bfg2

vulnerability	VCID-cgvg-aj53-kkbp

vulnerability	VCID-dh3c-g3k3-zkb7

vulnerability	VCID-ekxy-vaed-u7cg

vulnerability	VCID-ewe9-39b1-kba2

vulnerability	VCID-fgv4-bz59-h7g7

vulnerability	VCID-gfj6-dsud-g3fh

vulnerability	VCID-hs5f-21nx-gfeb

vulnerability	VCID-jrsz-ynp7-wbb2

vulnerability	VCID-jvrr-2gej-bfby

vulnerability	VCID-k2s2-zkua-8ydy

vulnerability	VCID-k4a4-f1as-x3bj

vulnerability	VCID-kxvg-qw8v-vydv

vulnerability	VCID-mx8t-s47w-wud5

vulnerability	VCID-paez-g9wh-mfeq

vulnerability	VCID-rk7t-zjzg-eqar

vulnerability	VCID-szzk-wxm2-cfgj

vulnerability	VCID-t89f-eksr-juen

vulnerability	VCID-vjas-pry4-93cz

vulnerability	VCID-vszp-vyxy-f7g7

vulnerability	VCID-vzb9-aeqz-hybr

vulnerability	VCID-w794-gqex-83du

vulnerability	VCID-wavp-f4kn-j3cm

vulnerability	VCID-x1ty-wqph-gkak

vulnerability	VCID-y43f-tmvr-hqas

vulnerability	VCID-ykkw-a6a1-43fe

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.26-1%252Bdebu8u3

url pkg:deb/debian/nss@2:3.61-1%2Bdeb11u3?distro=trixie

purl pkg:deb/debian/nss@2:3.61-1%2Bdeb11u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2tts-gwgd-zqcz

vulnerability	VCID-3nrj-5r53-37ab

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.61-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/nss@2:3.87.1-1%2Bdeb12u1?distro=trixie

purl pkg:deb/debian/nss@2:3.87.1-1%2Bdeb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2tts-gwgd-zqcz

vulnerability	VCID-3nrj-5r53-37ab

vulnerability	VCID-gret-hn3p-5kbk

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.87.1-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/nss@2:3.110-1%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/nss@2:3.110-1%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.110-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/nss@2:3.121-1?distro=trixie
purl	pkg:deb/debian/nss@2:3.121-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.121-1%3Fdistro=trixie

url	pkg:ebuild/dev-libs/nspr@4.12
purl	pkg:ebuild/dev-libs/nspr@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nspr@4.12

url	pkg:ebuild/dev-libs/nss@3.22.2
purl	pkg:ebuild/dev-libs/nss@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@3.22.2

url	pkg:ebuild/dev-libs/nss@3.28
purl	pkg:ebuild/dev-libs/nss@3.28
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@3.28

url	pkg:ebuild/dev-libs/nss@4.12
purl	pkg:ebuild/dev-libs/nss@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/nss@4.12

url	pkg:ebuild/mail-client/thunderbird@3.22.2
purl	pkg:ebuild/mail-client/thunderbird@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@3.22.2

url	pkg:ebuild/mail-client/thunderbird@4.12
purl	pkg:ebuild/mail-client/thunderbird@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@4.12

url	pkg:ebuild/mail-client/thunderbird@38.7.0
purl	pkg:ebuild/mail-client/thunderbird@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird@38.7.0

url	pkg:ebuild/mail-client/thunderbird-bin@3.22.2
purl	pkg:ebuild/mail-client/thunderbird-bin@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@3.22.2

url	pkg:ebuild/mail-client/thunderbird-bin@4.12
purl	pkg:ebuild/mail-client/thunderbird-bin@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@4.12

url	pkg:ebuild/mail-client/thunderbird-bin@38.7.0
purl	pkg:ebuild/mail-client/thunderbird-bin@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/mail-client/thunderbird-bin@38.7.0

url	pkg:ebuild/www-client/firefox@3.22.2
purl	pkg:ebuild/www-client/firefox@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@3.22.2

url	pkg:ebuild/www-client/firefox@4.12
purl	pkg:ebuild/www-client/firefox@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@4.12

url	pkg:ebuild/www-client/firefox@38.7.0
purl	pkg:ebuild/www-client/firefox@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox@38.7.0

url	pkg:ebuild/www-client/firefox-bin@3.22.2
purl	pkg:ebuild/www-client/firefox-bin@3.22.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@3.22.2

url	pkg:ebuild/www-client/firefox-bin@4.12
purl	pkg:ebuild/www-client/firefox-bin@4.12
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@4.12

url	pkg:ebuild/www-client/firefox-bin@38.7.0
purl	pkg:ebuild/www-client/firefox-bin@38.7.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-client/firefox-bin@38.7.0

url	pkg:mozilla/Firefox@44.0.0
purl	pkg:mozilla/Firefox@44.0.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@44.0.0

url	pkg:mozilla/Firefox%20ESR@38.8.0
purl	pkg:mozilla/Firefox%20ESR@38.8.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox%2520ESR@38.8.0

url	pkg:mozilla/NSS@3.21.0
purl	pkg:mozilla/NSS@3.21.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:mozilla/NSS@3.21.0

Affected_packages

url pkg:deb/debian/nss@3.12.3.1-0lenny7

purl pkg:deb/debian/nss@3.12.3.1-0lenny7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1ert-2qyc-cfc1

vulnerability	VCID-2w58-mdmk-guh8

vulnerability	VCID-2w9f-avet-g7c5

vulnerability	VCID-2zrv-q4tb-wqeg

vulnerability	VCID-46cy-x3cp-tke5

vulnerability	VCID-5wqt-2dtu-8qa4

vulnerability	VCID-6fvj-phnx-kfgs

vulnerability	VCID-7msj-wyd6-zkbe

vulnerability	VCID-8j3v-g9xv-gud5

vulnerability	VCID-8qtg-h4km-bfg2

vulnerability	VCID-8z26-rmnt-m7bw

vulnerability	VCID-9e9c-9p3v-87e9

vulnerability	VCID-9mux-fuyc-a7dx

vulnerability	VCID-aaas-s64r-gfhg

vulnerability	VCID-b1m6-r1bv-d7gr

vulnerability	VCID-b3mt-3nfn-suc1

vulnerability	VCID-bfd8-7p4k-abae

vulnerability	VCID-cgvg-aj53-kkbp

vulnerability	VCID-dh3c-g3k3-zkb7

vulnerability	VCID-dk4z-1j37-aucx

vulnerability	VCID-dtrc-mwu9-2bdf

vulnerability	VCID-e1yx-dxa6-1bba

vulnerability	VCID-ekxy-vaed-u7cg

vulnerability	VCID-ewe9-39b1-kba2

vulnerability	VCID-fgv4-bz59-h7g7

vulnerability	VCID-gfj6-dsud-g3fh

vulnerability	VCID-hs5f-21nx-gfeb

vulnerability	VCID-hs79-pemh-vfd6

vulnerability	VCID-jau7-gfz8-dkfa

vulnerability	VCID-jm5w-6pdb-bbes

vulnerability	VCID-jmhk-12t1-kugh

vulnerability	VCID-jrsz-ynp7-wbb2

vulnerability	VCID-jvrr-2gej-bfby

vulnerability	VCID-k2s2-zkua-8ydy

vulnerability	VCID-k4a4-f1as-x3bj

vulnerability	VCID-k8ap-r7e3-cuem

vulnerability	VCID-kxvg-qw8v-vydv

vulnerability	VCID-mwjm-p7pr-kfhj

vulnerability	VCID-mwyu-5rk2-xbbz

vulnerability	VCID-mx8t-s47w-wud5

vulnerability	VCID-paez-g9wh-mfeq

vulnerability	VCID-pc13-zwmr-p7hz

vulnerability	VCID-qdev-8m9n-8bbr

vulnerability	VCID-qdqz-admy-e7cg

vulnerability	VCID-qup9-qy11-fqhe

vulnerability	VCID-rk7t-zjzg-eqar

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-sucm-cq7u-r3en

vulnerability	VCID-szzk-wxm2-cfgj

vulnerability	VCID-t89f-eksr-juen

vulnerability	VCID-tqc3-eb8c-q3f9

vulnerability	VCID-ukuz-m6d3-5kab

vulnerability	VCID-uqv9-vr1q-6ya1

vulnerability	VCID-uzt2-tufb-rua5

vulnerability	VCID-vjas-pry4-93cz

vulnerability	VCID-vszp-vyxy-f7g7

vulnerability	VCID-vzb9-aeqz-hybr

vulnerability	VCID-w5wp-ujx1-vkhp

vulnerability	VCID-w794-gqex-83du

vulnerability	VCID-wavp-f4kn-j3cm

vulnerability	VCID-wut5-sqr6-mubd

vulnerability	VCID-x1ty-wqph-gkak

vulnerability	VCID-xap5-djda-2uem

vulnerability	VCID-y43f-tmvr-hqas

vulnerability	VCID-yazh-n5vb-pkf1

vulnerability	VCID-ykkw-a6a1-43fe

vulnerability	VCID-z26z-btvf-x7eq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.3.1-0lenny7

url pkg:deb/debian/nss@3.12.8-1%2Bsqueeze7

purl pkg:deb/debian/nss@3.12.8-1%2Bsqueeze7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1ert-2qyc-cfc1

vulnerability	VCID-2w58-mdmk-guh8

vulnerability	VCID-2w9f-avet-g7c5

vulnerability	VCID-2zrv-q4tb-wqeg

vulnerability	VCID-46cy-x3cp-tke5

vulnerability	VCID-5wqt-2dtu-8qa4

vulnerability	VCID-6fvj-phnx-kfgs

vulnerability	VCID-7msj-wyd6-zkbe

vulnerability	VCID-8j3v-g9xv-gud5

vulnerability	VCID-8qtg-h4km-bfg2

vulnerability	VCID-8z26-rmnt-m7bw

vulnerability	VCID-9mux-fuyc-a7dx

vulnerability	VCID-b1m6-r1bv-d7gr

vulnerability	VCID-b3mt-3nfn-suc1

vulnerability	VCID-bfd8-7p4k-abae

vulnerability	VCID-cgvg-aj53-kkbp

vulnerability	VCID-dh3c-g3k3-zkb7

vulnerability	VCID-dk4z-1j37-aucx

vulnerability	VCID-dtrc-mwu9-2bdf

vulnerability	VCID-e1yx-dxa6-1bba

vulnerability	VCID-ekxy-vaed-u7cg

vulnerability	VCID-ewe9-39b1-kba2

vulnerability	VCID-fgv4-bz59-h7g7

vulnerability	VCID-gfj6-dsud-g3fh

vulnerability	VCID-hs5f-21nx-gfeb

vulnerability	VCID-hs79-pemh-vfd6

vulnerability	VCID-jm5w-6pdb-bbes

vulnerability	VCID-jmhk-12t1-kugh

vulnerability	VCID-jrsz-ynp7-wbb2

vulnerability	VCID-jvrr-2gej-bfby

vulnerability	VCID-k2s2-zkua-8ydy

vulnerability	VCID-k4a4-f1as-x3bj

vulnerability	VCID-k8ap-r7e3-cuem

vulnerability	VCID-kxvg-qw8v-vydv

vulnerability	VCID-mwjm-p7pr-kfhj

vulnerability	VCID-mwyu-5rk2-xbbz

vulnerability	VCID-mx8t-s47w-wud5

vulnerability	VCID-paez-g9wh-mfeq

vulnerability	VCID-pc13-zwmr-p7hz

vulnerability	VCID-qdev-8m9n-8bbr

vulnerability	VCID-qdqz-admy-e7cg

vulnerability	VCID-qup9-qy11-fqhe

vulnerability	VCID-rk7t-zjzg-eqar

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-sucm-cq7u-r3en

vulnerability	VCID-szzk-wxm2-cfgj

vulnerability	VCID-t89f-eksr-juen

vulnerability	VCID-tqc3-eb8c-q3f9

vulnerability	VCID-ukuz-m6d3-5kab

vulnerability	VCID-uqv9-vr1q-6ya1

vulnerability	VCID-uzt2-tufb-rua5

vulnerability	VCID-vjas-pry4-93cz

vulnerability	VCID-vszp-vyxy-f7g7

vulnerability	VCID-vzb9-aeqz-hybr

vulnerability	VCID-w5wp-ujx1-vkhp

vulnerability	VCID-w794-gqex-83du

vulnerability	VCID-wavp-f4kn-j3cm

vulnerability	VCID-wut5-sqr6-mubd

vulnerability	VCID-x1ty-wqph-gkak

vulnerability	VCID-xap5-djda-2uem

vulnerability	VCID-y43f-tmvr-hqas

vulnerability	VCID-yazh-n5vb-pkf1

vulnerability	VCID-ykkw-a6a1-43fe

vulnerability	VCID-z26z-btvf-x7eq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze7

url pkg:deb/debian/nss@3.12.8-1%2Bsqueeze14

purl pkg:deb/debian/nss@3.12.8-1%2Bsqueeze14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1ert-2qyc-cfc1

vulnerability	VCID-2w58-mdmk-guh8

vulnerability	VCID-2w9f-avet-g7c5

vulnerability	VCID-2zrv-q4tb-wqeg

vulnerability	VCID-46cy-x3cp-tke5

vulnerability	VCID-5wqt-2dtu-8qa4

vulnerability	VCID-6fvj-phnx-kfgs

vulnerability	VCID-7msj-wyd6-zkbe

vulnerability	VCID-8j3v-g9xv-gud5

vulnerability	VCID-8qtg-h4km-bfg2

vulnerability	VCID-8z26-rmnt-m7bw

vulnerability	VCID-9mux-fuyc-a7dx

vulnerability	VCID-b1m6-r1bv-d7gr

vulnerability	VCID-b3mt-3nfn-suc1

vulnerability	VCID-bfd8-7p4k-abae

vulnerability	VCID-cgvg-aj53-kkbp

vulnerability	VCID-dh3c-g3k3-zkb7

vulnerability	VCID-dk4z-1j37-aucx

vulnerability	VCID-dtrc-mwu9-2bdf

vulnerability	VCID-e1yx-dxa6-1bba

vulnerability	VCID-ekxy-vaed-u7cg

vulnerability	VCID-ewe9-39b1-kba2

vulnerability	VCID-fgv4-bz59-h7g7

vulnerability	VCID-gfj6-dsud-g3fh

vulnerability	VCID-hs5f-21nx-gfeb

vulnerability	VCID-hs79-pemh-vfd6

vulnerability	VCID-jm5w-6pdb-bbes

vulnerability	VCID-jmhk-12t1-kugh

vulnerability	VCID-jrsz-ynp7-wbb2

vulnerability	VCID-jvrr-2gej-bfby

vulnerability	VCID-k2s2-zkua-8ydy

vulnerability	VCID-k4a4-f1as-x3bj

vulnerability	VCID-k8ap-r7e3-cuem

vulnerability	VCID-kxvg-qw8v-vydv

vulnerability	VCID-mwjm-p7pr-kfhj

vulnerability	VCID-mwyu-5rk2-xbbz

vulnerability	VCID-mx8t-s47w-wud5

vulnerability	VCID-paez-g9wh-mfeq

vulnerability	VCID-pc13-zwmr-p7hz

vulnerability	VCID-qdev-8m9n-8bbr

vulnerability	VCID-qdqz-admy-e7cg

vulnerability	VCID-qup9-qy11-fqhe

vulnerability	VCID-rk7t-zjzg-eqar

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-sucm-cq7u-r3en

vulnerability	VCID-szzk-wxm2-cfgj

vulnerability	VCID-t89f-eksr-juen

vulnerability	VCID-tqc3-eb8c-q3f9

vulnerability	VCID-ukuz-m6d3-5kab

vulnerability	VCID-uqv9-vr1q-6ya1

vulnerability	VCID-uzt2-tufb-rua5

vulnerability	VCID-vjas-pry4-93cz

vulnerability	VCID-vszp-vyxy-f7g7

vulnerability	VCID-vzb9-aeqz-hybr

vulnerability	VCID-w5wp-ujx1-vkhp

vulnerability	VCID-w794-gqex-83du

vulnerability	VCID-wavp-f4kn-j3cm

vulnerability	VCID-wut5-sqr6-mubd

vulnerability	VCID-x1ty-wqph-gkak

vulnerability	VCID-xap5-djda-2uem

vulnerability	VCID-y43f-tmvr-hqas

vulnerability	VCID-yazh-n5vb-pkf1

vulnerability	VCID-ykkw-a6a1-43fe

vulnerability	VCID-z26z-btvf-x7eq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze14

url pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5

purl pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1ert-2qyc-cfc1

vulnerability	VCID-2w58-mdmk-guh8

vulnerability	VCID-2w9f-avet-g7c5

vulnerability	VCID-2zrv-q4tb-wqeg

vulnerability	VCID-46cy-x3cp-tke5

vulnerability	VCID-5wqt-2dtu-8qa4

vulnerability	VCID-6fvj-phnx-kfgs

vulnerability	VCID-7msj-wyd6-zkbe

vulnerability	VCID-8j3v-g9xv-gud5

vulnerability	VCID-8qtg-h4km-bfg2

vulnerability	VCID-9mux-fuyc-a7dx

vulnerability	VCID-b3mt-3nfn-suc1

vulnerability	VCID-cgvg-aj53-kkbp

vulnerability	VCID-dh3c-g3k3-zkb7

vulnerability	VCID-dk4z-1j37-aucx

vulnerability	VCID-dtrc-mwu9-2bdf

vulnerability	VCID-ekxy-vaed-u7cg

vulnerability	VCID-ewe9-39b1-kba2

vulnerability	VCID-fgv4-bz59-h7g7

vulnerability	VCID-gfj6-dsud-g3fh

vulnerability	VCID-hs5f-21nx-gfeb

vulnerability	VCID-hs79-pemh-vfd6

vulnerability	VCID-jm5w-6pdb-bbes

vulnerability	VCID-jmhk-12t1-kugh

vulnerability	VCID-jrsz-ynp7-wbb2

vulnerability	VCID-jvrr-2gej-bfby

vulnerability	VCID-k2s2-zkua-8ydy

vulnerability	VCID-k4a4-f1as-x3bj

vulnerability	VCID-kxvg-qw8v-vydv

vulnerability	VCID-mwjm-p7pr-kfhj

vulnerability	VCID-mwyu-5rk2-xbbz

vulnerability	VCID-mx8t-s47w-wud5

vulnerability	VCID-paez-g9wh-mfeq

vulnerability	VCID-pc13-zwmr-p7hz

vulnerability	VCID-qdev-8m9n-8bbr

vulnerability	VCID-qdqz-admy-e7cg

vulnerability	VCID-qup9-qy11-fqhe

vulnerability	VCID-rk7t-zjzg-eqar

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-sucm-cq7u-r3en

vulnerability	VCID-szzk-wxm2-cfgj

vulnerability	VCID-t89f-eksr-juen

vulnerability	VCID-ukuz-m6d3-5kab

vulnerability	VCID-uqv9-vr1q-6ya1

vulnerability	VCID-uzt2-tufb-rua5

vulnerability	VCID-vjas-pry4-93cz

vulnerability	VCID-vszp-vyxy-f7g7

vulnerability	VCID-vzb9-aeqz-hybr

vulnerability	VCID-w5wp-ujx1-vkhp

vulnerability	VCID-w794-gqex-83du

vulnerability	VCID-wavp-f4kn-j3cm

vulnerability	VCID-wut5-sqr6-mubd

vulnerability	VCID-x1ty-wqph-gkak

vulnerability	VCID-xap5-djda-2uem

vulnerability	VCID-y43f-tmvr-hqas

vulnerability	VCID-ykkw-a6a1-43fe

vulnerability	VCID-z26z-btvf-x7eq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.14.5-1%252Bdeb7u5

url pkg:deb/debian/nss@2:3.17.2-1.1

purl pkg:deb/debian/nss@2:3.17.2-1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2w58-mdmk-guh8

vulnerability	VCID-2w9f-avet-g7c5

vulnerability	VCID-2zrv-q4tb-wqeg

vulnerability	VCID-46cy-x3cp-tke5

vulnerability	VCID-5wqt-2dtu-8qa4

vulnerability	VCID-6fvj-phnx-kfgs

vulnerability	VCID-7msj-wyd6-zkbe

vulnerability	VCID-8qtg-h4km-bfg2

vulnerability	VCID-9mux-fuyc-a7dx

vulnerability	VCID-cgvg-aj53-kkbp

vulnerability	VCID-dh3c-g3k3-zkb7

vulnerability	VCID-dk4z-1j37-aucx

vulnerability	VCID-ekxy-vaed-u7cg

vulnerability	VCID-ewe9-39b1-kba2

vulnerability	VCID-fgv4-bz59-h7g7

vulnerability	VCID-gfj6-dsud-g3fh

vulnerability	VCID-hs5f-21nx-gfeb

vulnerability	VCID-hs79-pemh-vfd6

vulnerability	VCID-jmhk-12t1-kugh

vulnerability	VCID-jrsz-ynp7-wbb2

vulnerability	VCID-jvrr-2gej-bfby

vulnerability	VCID-k2s2-zkua-8ydy

vulnerability	VCID-k4a4-f1as-x3bj

vulnerability	VCID-kxvg-qw8v-vydv

vulnerability	VCID-mwyu-5rk2-xbbz

vulnerability	VCID-mx8t-s47w-wud5

vulnerability	VCID-paez-g9wh-mfeq

vulnerability	VCID-pc13-zwmr-p7hz

vulnerability	VCID-qup9-qy11-fqhe

vulnerability	VCID-rk7t-zjzg-eqar

vulnerability	VCID-rzqy-gheq-cqgg

vulnerability	VCID-szzk-wxm2-cfgj

vulnerability	VCID-t89f-eksr-juen

vulnerability	VCID-ukuz-m6d3-5kab

vulnerability	VCID-vjas-pry4-93cz

vulnerability	VCID-vszp-vyxy-f7g7

vulnerability	VCID-vzb9-aeqz-hybr

vulnerability	VCID-w794-gqex-83du

vulnerability	VCID-wavp-f4kn-j3cm

vulnerability	VCID-wut5-sqr6-mubd

vulnerability	VCID-x1ty-wqph-gkak

vulnerability	VCID-y43f-tmvr-hqas

vulnerability	VCID-ykkw-a6a1-43fe

vulnerability	VCID-z26z-btvf-x7eq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.17.2-1.1

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00001.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00001.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00002.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00002.html

reference_url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00010.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00010.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1938.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-1938.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-1938

reference_id

reference_type

scores

value	0.01048
scoring_system	epss
scoring_elements	0.77513
published_at	2026-04-13T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77455
published_at	2026-04-01T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77506
published_at	2026-04-09T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77532
published_at	2026-04-11T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77516
published_at	2026-04-12T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77461
published_at	2026-04-02T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77486
published_at	2026-04-04T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77467
published_at	2026-04-07T12:55:00Z

value	0.01048
scoring_system	epss
scoring_elements	0.77497
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-1938

reference_url	https://blog.fuzzing-project.org/37-Mozilla-NSS-Wrong-calculation-results-in-mp_div-and-mp_exptmod.html
reference_id
reference_type
scores
url	https://blog.fuzzing-project.org/37-Mozilla-NSS-Wrong-calculation-results-in-mp_div-and-mp_exptmod.html

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1190248
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1190248

reference_url	https://bugzilla.mozilla.org/show_bug.cgi?id=1194947
reference_id
reference_type
scores
url	https://bugzilla.mozilla.org/show_bug.cgi?id=1194947

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7575
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7575

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1950
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1950

reference_url	https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.21_release_notes
reference_id
reference_type
scores
url	https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.21_release_notes

reference_url	https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_div.c
reference_id
reference_type
scores
url	https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_div.c

reference_url	https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_exptmod.c
reference_id
reference_type
scores
url	https://github.com/hannob/bignum-fuzz/blob/master/CVE-2016-1938-nss-mp_exptmod.c

reference_url	https://hg.mozilla.org/projects/nss/diff/a555bf0fc23a/lib/freebl/mpi/mpi.c
reference_id
reference_type
scores
url	https://hg.mozilla.org/projects/nss/diff/a555bf0fc23a/lib/freebl/mpi/mpi.c

reference_url	http://www.debian.org/security/2016/dsa-3688
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3688

reference_url	http://www.mozilla.org/security/announce/2016/mfsa2016-07.html
reference_id
reference_type
scores
url	http://www.mozilla.org/security/announce/2016/mfsa2016-07.html

reference_url	http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

reference_url	http://www.securityfocus.com/bid/81955
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/81955

reference_url	http://www.securityfocus.com/bid/91787
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/91787

reference_url	http://www.securitytracker.com/id/1034825
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1034825

reference_url	http://www.ubuntu.com/usn/USN-2880-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2880-1

reference_url	http://www.ubuntu.com/usn/USN-2880-2
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2880-2

reference_url	http://www.ubuntu.com/usn/USN-2903-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2903-1

reference_url	http://www.ubuntu.com/usn/USN-2903-2
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2903-2

reference_url	http://www.ubuntu.com/usn/USN-2973-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2973-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1305159
reference_id	1305159
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1305159

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::
reference_id	cpe:2.3:a:mozilla:firefox::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:firefox::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:nss::::::::
reference_id	cpe:2.3:a:mozilla:nss::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:mozilla:nss::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.1:::::::*
reference_id	cpe:2.3:o:opensuse:leap:42.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:13.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:::::::*

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1938
reference_id	CVE-2016-1938
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1938

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-1938

reference_id

CVE-2016-1938

reference_type

scores

value	6.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:N

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2016-1938

reference_url	https://security.gentoo.org/glsa/201605-06
reference_id	GLSA-201605-06
reference_type
scores
url	https://security.gentoo.org/glsa/201605-06

reference_url	https://security.gentoo.org/glsa/201701-46
reference_id	GLSA-201701-46
reference_type
scores
url	https://security.gentoo.org/glsa/201701-46

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2016-07

reference_id

mfsa2016-07

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2016-07

reference_url	https://usn.ubuntu.com/2880-1/
reference_id	USN-2880-1
reference_type
scores
url	https://usn.ubuntu.com/2880-1/

reference_url	https://usn.ubuntu.com/2903-1/
reference_id	USN-2903-1
reference_type
scores
url	https://usn.ubuntu.com/2903-1/

reference_url	https://usn.ubuntu.com/2973-1/
reference_id	USN-2973-1
reference_type
scores
url	https://usn.ubuntu.com/2973-1/

Weaknesses

cwe_id	682
name	Incorrect Calculation
description	The product performs a calculation that generates incorrect or unintended results that are later used in security-critical decisions or resource management.

cwe_id	310
name	Cryptographic Issues
description	Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.

Exploits

Severity_range_score 6.4 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9mux-fuyc-a7dx

Vulnerability Instance