Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/com.squareup.okhttp3/okhttp@4.0.0-RC1
Typemaven
Namespacecom.squareup.okhttp3
Nameokhttp
Version4.0.0-RC1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version4.9.2
Latest_non_vulnerable_version4.9.2
Affected_by_vulnerabilities
0
url VCID-4e5q-x177-uyat
vulnerability_id VCID-4e5q-x177-uyat
summary 
Square OkHttp can accept the wrong certificate
In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11 Android ID: A-171980069
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-0341.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-0341.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-0341
reference_id
reference_type
scores
0
value 0.01037
scoring_system epss
scoring_elements 0.77463
published_at 2026-04-24T12:55:00Z
1
value 0.01037
scoring_system epss
scoring_elements 0.77429
published_at 2026-04-21T12:55:00Z
2
value 0.01037
scoring_system epss
scoring_elements 0.77437
published_at 2026-04-18T12:55:00Z
3
value 0.01037
scoring_system epss
scoring_elements 0.77438
published_at 2026-04-16T12:55:00Z
4
value 0.01037
scoring_system epss
scoring_elements 0.77398
published_at 2026-04-13T12:55:00Z
5
value 0.01037
scoring_system epss
scoring_elements 0.77402
published_at 2026-04-12T12:55:00Z
6
value 0.01037
scoring_system epss
scoring_elements 0.77422
published_at 2026-04-11T12:55:00Z
7
value 0.01037
scoring_system epss
scoring_elements 0.77396
published_at 2026-04-09T12:55:00Z
8
value 0.01037
scoring_system epss
scoring_elements 0.77386
published_at 2026-04-08T12:55:00Z
9
value 0.01037
scoring_system epss
scoring_elements 0.77357
published_at 2026-04-07T12:55:00Z
10
value 0.01037
scoring_system epss
scoring_elements 0.77376
published_at 2026-04-04T12:55:00Z
11
value 0.01037
scoring_system epss
scoring_elements 0.77343
published_at 2026-04-01T12:55:00Z
12
value 0.01037
scoring_system epss
scoring_elements 0.77349
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-0341
2
reference_url https://github.com/square/okhttp
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/square/okhttp
3
reference_url https://github.com/square/okhttp/commit/f574ea2f5259d9040f264ddeb582fb1ce563f10c
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/square/okhttp/commit/f574ea2f5259d9040f264ddeb582fb1ce563f10c
4
reference_url https://github.com/square/okhttp/issues/6724
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/square/okhttp/issues/6724
5
reference_url https://github.com/square/okhttp/pull/6741
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/square/okhttp/pull/6741
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-0341
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-0341
7
reference_url https://source.android.com/security/bulletin/2021-02-01
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://source.android.com/security/bulletin/2021-02-01
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2154086
reference_id 2154086
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2154086
9
reference_url https://github.com/advisories/GHSA-3cqm-mf7h-prrj
reference_id GHSA-3cqm-mf7h-prrj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3cqm-mf7h-prrj
10
reference_url https://access.redhat.com/errata/RHSA-2023:0756
reference_id RHSA-2023:0756
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0756
11
reference_url https://access.redhat.com/errata/RHSA-2023:2705
reference_id RHSA-2023:2705
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2705
12
reference_url https://access.redhat.com/errata/RHSA-2023:2706
reference_id RHSA-2023:2706
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2706
13
reference_url https://access.redhat.com/errata/RHSA-2023:2707
reference_id RHSA-2023:2707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2707
14
reference_url https://access.redhat.com/errata/RHSA-2023:2710
reference_id RHSA-2023:2710
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2710
15
reference_url https://access.redhat.com/errata/RHSA-2023:2713
reference_id RHSA-2023:2713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2713
16
reference_url https://access.redhat.com/errata/RHSA-2023:2723
reference_id RHSA-2023:2723
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2723
17
reference_url https://access.redhat.com/errata/RHSA-2023:3223
reference_id RHSA-2023:3223
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:3223
18
reference_url https://access.redhat.com/errata/RHSA-2024:6667
reference_id RHSA-2024:6667
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:6667
fixed_packages
0
url pkg:maven/com.squareup.okhttp3/okhttp@4.9.2
purl pkg:maven/com.squareup.okhttp3/okhttp@4.9.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.squareup.okhttp3/okhttp@4.9.2
aliases CVE-2021-0341, GHSA-3cqm-mf7h-prrj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4e5q-x177-uyat
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/com.squareup.okhttp3/okhttp@4.0.0-RC1