{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/57783?format=json","vulnerability_id":"VCID-m649-my8s-eqgk","summary":"security update","aliases":[{"alias":"CVE-2014-3865"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/571137?format=json","purl":"pkg:deb/debian/dpkg@1.16.18","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.16.18"},{"url":"http://public2.vulnerablecode.io/api/packages/1035713?format=json","purl":"pkg:deb/debian/dpkg@1.17.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.17.10"},{"url":"http://public2.vulnerablecode.io/api/packages/584673?format=json","purl":"pkg:deb/debian/dpkg@1.17.10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.17.10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582931?format=json","purl":"pkg:deb/debian/dpkg@1.20.13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1786-vddy-dfbz"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.20.13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582932?format=json","purl":"pkg:deb/debian/dpkg@1.21.22?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1786-vddy-dfbz"},{"vulnerability":"VCID-ec4e-5j15-ekd9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.21.22%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582933?format=json","purl":"pkg:deb/debian/dpkg@1.22.22?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.22.22%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/582934?format=json","purl":"pkg:deb/debian/dpkg@1.23.7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.23.7%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/571127?format=json","purl":"pkg:deb/debian/dpkg@1.4.0.23.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1vu9-xzw9-kfe2"},{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-g22y-46dt-syd5"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.4.0.23.2"},{"url":"http://public2.vulnerablecode.io/api/packages/571128?format=json","purl":"pkg:deb/debian/dpkg@1.4.0.35","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1vu9-xzw9-kfe2"},{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-g22y-46dt-syd5"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.4.0.35"},{"url":"http://public2.vulnerablecode.io/api/packages/571129?format=json","purl":"pkg:deb/debian/dpkg@1.6.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1vu9-xzw9-kfe2"},{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-g22y-46dt-syd5"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.6.15"},{"url":"http://public2.vulnerablecode.io/api/packages/571130?format=json","purl":"pkg:deb/debian/dpkg@1.9.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1vu9-xzw9-kfe2"},{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-g22y-46dt-syd5"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.9.21"},{"url":"http://public2.vulnerablecode.io/api/packages/571131?format=json","purl":"pkg:deb/debian/dpkg@1.10.28","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1vu9-xzw9-kfe2"},{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.10.28"},{"url":"http://public2.vulnerablecode.io/api/packages/571132?format=json","purl":"pkg:deb/debian/dpkg@1.13.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.13.25"},{"url":"http://public2.vulnerablecode.io/api/packages/571133?format=json","purl":"pkg:deb/debian/dpkg@1.13.26","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.13.26"},{"url":"http://public2.vulnerablecode.io/api/packages/571134?format=json","purl":"pkg:deb/debian/dpkg@1.14.31","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m1j5-hyhj-xyb4"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-r8g2-smun-abgv"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-uf6j-uvg9-63d6"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.14.31"},{"url":"http://public2.vulnerablecode.io/api/packages/571135?format=json","purl":"pkg:deb/debian/dpkg@1.15.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.15.11"},{"url":"http://public2.vulnerablecode.io/api/packages/571136?format=json","purl":"pkg:deb/debian/dpkg@1.15.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.15.12"},{"url":"http://public2.vulnerablecode.io/api/packages/571137?format=json","purl":"pkg:deb/debian/dpkg@1.16.18","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7stw-fbe7-p3am"},{"vulnerability":"VCID-9vsz-8751-wkgm"},{"vulnerability":"VCID-bx4a-22qt-qyg9"},{"vulnerability":"VCID-e1fu-mzvj-xydx"},{"vulnerability":"VCID-m649-my8s-eqgk"},{"vulnerability":"VCID-qpz9-gs1s-ffd3"},{"vulnerability":"VCID-strx-c9sj-9bbb"},{"vulnerability":"VCID-umm6-cgs8-pyg3"},{"vulnerability":"VCID-xxdx-hfvz-tfaf"},{"vulnerability":"VCID-zypq-un6n-eugq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/dpkg@1.16.18"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3865","reference_id":"","reference_type":"","scores":[{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.89969","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.89972","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.89984","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.8999","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90006","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90011","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90019","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90018","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90012","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90027","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90028","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90025","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90043","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90042","published_at":"2026-04-29T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90054","published_at":"2026-05-05T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90069","published_at":"2026-05-07T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90081","published_at":"2026-05-09T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90078","published_at":"2026-05-11T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.90086","published_at":"2026-05-12T12:55:00Z"},{"value":"0.0529","scoring_system":"epss","scoring_elements":"0.901","published_at":"2026-05-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-3865"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3864","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3864"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3865","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3865"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=749183","reference_id":"749183","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=749183"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/39207.txt","reference_id":"CVE-2014-3865;OSVDB-107568","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/39207.txt"},{"reference_url":"https://www.securityfocus.com/bid/67727/info","reference_id":"CVE-2014-3865;OSVDB-107568","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/67727/info"},{"reference_url":"https://usn.ubuntu.com/2242-1/","reference_id":"USN-2242-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2242-1/"}],"weaknesses":[],"exploits":[{"date_added":"2014-05-25","description":"dpkg Source Package - Index: pseudo-header Processing Multiple Local Directory Traversals","required_action":null,"due_date":null,"notes":null,"known_ransomware_campaign_use":true,"source_date_published":"2014-05-25","exploit_type":"local","platform":"linux","source_date_updated":"2016-01-10","data_source":"Exploit-DB","source_url":"https://www.securityfocus.com/bid/67727/info"}],"severity_range_score":null,"exploitability":"2.0","weighted_severity":"0.0","risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m649-my8s-eqgk"}