VulnerableCode Vulnerability Details - VCID-f43t-79fx-mqg2

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-f43t-79fx-mqg2

Essentials
Severities (10)
References (18)
Severity details (8)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-f43t-79fx-mqg2
Aliases	CVE-2014-2681 GHSA-43xg-87xw-jpv8
Summary	security update
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (4)

CWE-611	Improper Restriction of XML External Entity Reference
CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-19	Data Processing Errors
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://advisories.mageia.org/MGASA-2014-0151.html
generic_textual	MODERATE	http://framework.zend.com/security/advisory/ZF2014-01
epss	0.02971	https://api.first.org/data/v1/epss?cve=CVE-2014-2681
epss	0.02971	https://api.first.org/data/v1/epss?cve=CVE-2014-2681
generic_textual	MODERATE	http://seclists.org/oss-sec/2014/q2/0
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-43xg-87xw-jpv8
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2014-2681
generic_textual	MODERATE	https://web.archive.org/web/20150523055201/http://www.mandriva.com/en/support/security/advisories/advisory/MDVSA-2014:072/?name=MDVSA-2014:072
generic_textual	MODERATE	https://web.archive.org/web/20210125095213/http://www.securityfocus.com/bid/66358
generic_textual	MODERATE	http://www.debian.org/security/2015/dsa-3265

Reference id	Reference type	URL
		http://advisories.mageia.org/MGASA-2014-0151.html
		http://framework.zend.com/security/advisory/ZF2014-01
		https://api.first.org/data/v1/epss?cve=CVE-2014-2681
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2681
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2682
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2683
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2684
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2685
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4914
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8088
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8089
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3154
		http://seclists.org/oss-sec/2014/q2/0
		https://nvd.nist.gov/vuln/detail/CVE-2014-2681
		https://web.archive.org/web/20150523055201/http://www.mandriva.com/en/support/security/advisories/advisory/MDVSA-2014:072/?name=MDVSA-2014:072
		https://web.archive.org/web/20210125095213/http://www.securityfocus.com/bid/66358
		http://www.debian.org/security/2015/dsa-3265
GHSA-43xg-87xw-jpv8		https://github.com/advisories/GHSA-43xg-87xw-jpv8

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.86808
EPSS Score	0.02971
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T17:09:42.047478+00:00	Debian Oval Importer	Import	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.6.0