Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:golang/github.com/cloudflare/circl@1.6.3
Typegolang
Namespacegithub.com/cloudflare
Namecircl
Version1.6.3
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-82wq-13vf-ufb2
vulnerability_id VCID-82wq-13vf-ufb2
summary 
CIRCL has an incorrect calculation in secp384r1 CombinedMult
The CombinedMult function in the CIRCL ecc/p384 package (secp384r1 curve) produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas.
ECDH and ECDSA signing relying on this curve are not affected.

The bug was fixed in **[v1.6.3](https://github.com/cloudflare/circl/releases/tag/v1.6.3)**.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-1229
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.05864
published_at 2026-04-08T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.06053
published_at 2026-04-29T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.06047
published_at 2026-04-26T12:55:00Z
3
value 0.00022
scoring_system epss
scoring_elements 0.06011
published_at 2026-04-24T12:55:00Z
4
value 0.00022
scoring_system epss
scoring_elements 0.05981
published_at 2026-04-21T12:55:00Z
5
value 0.00022
scoring_system epss
scoring_elements 0.05829
published_at 2026-04-18T12:55:00Z
6
value 0.00022
scoring_system epss
scoring_elements 0.05819
published_at 2026-04-16T12:55:00Z
7
value 0.00022
scoring_system epss
scoring_elements 0.05854
published_at 2026-04-13T12:55:00Z
8
value 0.00022
scoring_system epss
scoring_elements 0.05862
published_at 2026-04-12T12:55:00Z
9
value 0.00022
scoring_system epss
scoring_elements 0.05871
published_at 2026-04-11T12:55:00Z
10
value 0.00022
scoring_system epss
scoring_elements 0.05796
published_at 2026-04-02T12:55:00Z
11
value 0.00022
scoring_system epss
scoring_elements 0.05889
published_at 2026-04-09T12:55:00Z
12
value 0.00022
scoring_system epss
scoring_elements 0.05831
published_at 2026-04-04T12:55:00Z
13
value 0.00022
scoring_system epss
scoring_elements 0.05825
published_at 2026-04-07T12:55:00Z
14
value 0.00023
scoring_system epss
scoring_elements 0.06418
published_at 2026-05-07T12:55:00Z
15
value 0.00023
scoring_system epss
scoring_elements 0.06305
published_at 2026-05-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-1229
1
reference_url https://github.com/cloudflare/circl
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:P/S:N/AU:Y/U:Amber
1
value LOW
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-24T15:04:09Z/
url https://github.com/cloudflare/circl
2
reference_url https://github.com/cloudflare/circl/pull/583
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:P/S:N/AU:Y/U:Amber
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/cloudflare/circl/pull/583
3
reference_url https://github.com/cloudflare/circl/releases/tag/v1.6.3
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:P/S:N/AU:Y/U:Amber
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/cloudflare/circl/releases/tag/v1.6.3
4
reference_url https://github.com/cloudflare/circl/security/advisories/GHSA-q9hv-hpm4-hj6x
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:P/S:N/AU:Y/U:Amber
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/cloudflare/circl/security/advisories/GHSA-q9hv-hpm4-hj6x
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-1229
reference_id
reference_type
scores
0
value 2.9
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:P/S:N/AU:Y/U:Amber
1
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-1229
fixed_packages
0
url pkg:golang/github.com/cloudflare/circl@1.6.3
purl pkg:golang/github.com/cloudflare/circl@1.6.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:golang/github.com/cloudflare/circl@1.6.3
aliases CVE-2026-1229, GHSA-q9hv-hpm4-hj6x
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-82wq-13vf-ufb2
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:golang/github.com/cloudflare/circl@1.6.3