Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:conan/openssl@1.1.1h

Type conan

Namespace

Name openssl

Version 1.1.1h

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.1.1w

Latest_non_vulnerable_version 1.1.1w

Affected_by_vulnerabilities

url VCID-8j5t-nvjh-7kez

vulnerability_id VCID-8j5t-nvjh-7kez

summary multiple issues

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3450.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3450.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3450

reference_id

reference_type

scores

value	0.00504
scoring_system	epss
scoring_elements	0.66533
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3450

reference_url

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

reference_url

https://github.com/alexcrichton/openssl-src-rs

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/alexcrichton/openssl-src-rs

reference_url

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2a40b7bc7b94dd7de897a74571e7024f0cf0d63b

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=2a40b7bc7b94dd7de897a74571e7024f0cf0d63b

reference_url

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845

reference_url

https://kc.mcafee.com/corporate/index?page=content&id=SB10356

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://kc.mcafee.com/corporate/index?page=content&id=SB10356

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/

reference_url

https://mta.openssl.org/pipermail/openssl-announce/2021-March/000198.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://mta.openssl.org/pipermail/openssl-announce/2021-March/000198.html

reference_url

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013

reference_url

https://rustsec.org/advisories/RUSTSEC-2021-0056.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://rustsec.org/advisories/RUSTSEC-2021-0056.html

reference_url

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc

reference_url

https://security.gentoo.org/glsa/202103-03

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.gentoo.org/glsa/202103-03

reference_url

https://security.netapp.com/advisory/ntap-20210326-0006

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20210326-0006

reference_url	https://security.netapp.com/advisory/ntap-20210326-0006/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20210326-0006/

reference_url

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd

reference_url

https://www.openssl.org/news/secadv/20210325.txt

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.openssl.org/news/secadv/20210325.txt

reference_url

https://www.oracle.com/security-alerts/cpuApr2021.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuApr2021.html

reference_url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_url

https://www.oracle.com//security-alerts/cpujul2021.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com//security-alerts/cpujul2021.html

reference_url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_url

https://www.tenable.com/security/tns-2021-05

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.tenable.com/security/tns-2021-05

reference_url

https://www.tenable.com/security/tns-2021-08

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.tenable.com/security/tns-2021-08

reference_url

https://www.tenable.com/security/tns-2021-09

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.tenable.com/security/tns-2021-09

reference_url

http://www.openwall.com/lists/oss-security/2021/03/27/1

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2021/03/27/1

reference_url

http://www.openwall.com/lists/oss-security/2021/03/27/2

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2021/03/27/2

reference_url

http://www.openwall.com/lists/oss-security/2021/03/28/3

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2021/03/28/3

reference_url

http://www.openwall.com/lists/oss-security/2021/03/28/4

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2021/03/28/4

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1941547
reference_id	1941547
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1941547

reference_url	https://security.archlinux.org/ASA-202103-10
reference_id	ASA-202103-10
reference_type
scores
url	https://security.archlinux.org/ASA-202103-10

reference_url

https://security.archlinux.org/AVG-1736

reference_id

AVG-1736

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1736

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-3450

reference_id

CVE-2021-3450

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-3450

reference_url	https://access.redhat.com/errata/RHSA-2021:1024
reference_id	RHSA-2021:1024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1024

reference_url	https://access.redhat.com/errata/RHSA-2021:1189
reference_id	RHSA-2021:1189
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1189

reference_url	https://access.redhat.com/errata/RHSA-2021:1195
reference_id	RHSA-2021:1195
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1195

reference_url	https://access.redhat.com/errata/RHSA-2021:1196
reference_id	RHSA-2021:1196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1196

reference_url	https://access.redhat.com/errata/RHSA-2021:1199
reference_id	RHSA-2021:1199
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1199

reference_url	https://access.redhat.com/errata/RHSA-2021:1200
reference_id	RHSA-2021:1200
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1200

reference_url	https://access.redhat.com/errata/RHSA-2021:1202
reference_id	RHSA-2021:1202
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1202

reference_url	https://access.redhat.com/errata/RHSA-2021:1203
reference_id	RHSA-2021:1203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1203

fixed_packages

url pkg:conan/openssl@1.1.1q

purl pkg:conan/openssl@1.1.1q

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-w1qj-n768-hbar

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/openssl@1.1.1q

aliases CVE-2021-3450, GHSA-8hfj-xrj2-pm22

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8j5t-nvjh-7kez

url VCID-fb66-4fr3-xye7

vulnerability_id VCID-fb66-4fr3-xye7

summary denial of service

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1971.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1971.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-1971

reference_id

reference_type

scores

value	0.00348
scoring_system	epss
scoring_elements	0.57596
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-1971

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1971

reference_url	https://www.openssl.org/news/secadv/20201208.txt
reference_id
reference_type
scores
url	https://www.openssl.org/news/secadv/20201208.txt

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1903409
reference_id	1903409
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1903409

reference_url	https://security.archlinux.org/ASA-202012-24
reference_id	ASA-202012-24
reference_type
scores
url	https://security.archlinux.org/ASA-202012-24

reference_url

https://security.archlinux.org/AVG-1335

reference_id

AVG-1335

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1335

reference_url

https://security.archlinux.org/AVG-1404

reference_id

AVG-1404

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1404

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2020-1971
reference_id	CVE-2020-1971
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2020-1971

reference_url	https://access.redhat.com/errata/RHSA-2020:5422
reference_id	RHSA-2020:5422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5422

reference_url	https://access.redhat.com/errata/RHSA-2020:5476
reference_id	RHSA-2020:5476
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5476

reference_url	https://access.redhat.com/errata/RHSA-2020:5566
reference_id	RHSA-2020:5566
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5566

reference_url	https://access.redhat.com/errata/RHSA-2020:5588
reference_id	RHSA-2020:5588
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5588

reference_url	https://access.redhat.com/errata/RHSA-2020:5623
reference_id	RHSA-2020:5623
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5623

reference_url	https://access.redhat.com/errata/RHSA-2020:5637
reference_id	RHSA-2020:5637
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5637

reference_url	https://access.redhat.com/errata/RHSA-2020:5639
reference_id	RHSA-2020:5639
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5639

reference_url	https://access.redhat.com/errata/RHSA-2020:5640
reference_id	RHSA-2020:5640
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5640

reference_url	https://access.redhat.com/errata/RHSA-2020:5641
reference_id	RHSA-2020:5641
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5641

reference_url	https://access.redhat.com/errata/RHSA-2020:5642
reference_id	RHSA-2020:5642
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5642

reference_url	https://access.redhat.com/errata/RHSA-2021:0056
reference_id	RHSA-2021:0056
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0056

reference_url	https://access.redhat.com/errata/RHSA-2021:0486
reference_id	RHSA-2021:0486
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0486

reference_url	https://access.redhat.com/errata/RHSA-2021:0488
reference_id	RHSA-2021:0488
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0488

reference_url	https://access.redhat.com/errata/RHSA-2021:0489
reference_id	RHSA-2021:0489
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0489

reference_url	https://access.redhat.com/errata/RHSA-2021:0491
reference_id	RHSA-2021:0491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0491

reference_url	https://access.redhat.com/errata/RHSA-2021:0494
reference_id	RHSA-2021:0494
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0494

reference_url	https://access.redhat.com/errata/RHSA-2021:0495
reference_id	RHSA-2021:0495
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0495

reference_url	https://access.redhat.com/errata/RHSA-2021:0949
reference_id	RHSA-2021:0949
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0949

fixed_packages

url pkg:conan/openssl@1.1.1i

purl pkg:conan/openssl@1.1.1i

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-w1qj-n768-hbar

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/openssl@1.1.1i

aliases CVE-2020-1971

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fb66-4fr3-xye7

url VCID-w1qj-n768-hbar

vulnerability_id VCID-w1qj-n768-hbar

summary

Excessive Iteration
Issue summary: Checking excessively long DH keys or parameters may be very slow.

Impact summary: Applications that use the functions DH_check(), DH_check_ex()
or EVP_PKEY_param_check() to check a DH key or DH parameters may experience long
delays. Where the key or parameters that are being checked have been obtained
from an untrusted source this may lead to a Denial of Service.

The function DH_check() performs various checks on DH parameters. After fixing
CVE-2023-3446 it was discovered that a large q parameter value can also trigger
an overly long computation during some of these checks. A correct q value,
if present, cannot be larger than the modulus p parameter, thus it is
unnecessary to perform these checks if q is larger than p.

An application that calls DH_check() and supplies a key or parameters obtained
from an untrusted source could be vulnerable to a Denial of Service attack.

The function DH_check() is itself called by a number of other OpenSSL functions.
An application calling any of those other functions may similarly be affected.
The other functions affected by this are DH_check_ex() and
EVP_PKEY_param_check().

Also vulnerable are the OpenSSL dhparam and pkeyparam command line applications
when using the "-check" option.

The OpenSSL SSL/TLS implementation is not affected by this issue.

The OpenSSL 3.0 and 3.1 FIPS providers are not affected by this issue.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3817.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3817.json

reference_url	http://seclists.org/fulldisclosure/2023/Jul/43
reference_id
reference_type
scores
url	http://seclists.org/fulldisclosure/2023/Jul/43

reference_url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a1eb62c29db6cb5eec707f9338aee00f44e26f5
reference_id
reference_type
scores
url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a1eb62c29db6cb5eec707f9338aee00f44e26f5

reference_url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=869ad69aadd985c7b8ca6f4e5dd0eb274c9f3644
reference_id
reference_type
scores
url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=869ad69aadd985c7b8ca6f4e5dd0eb274c9f3644

reference_url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9002fd07327a91f35ba6c1307e71fa6fd4409b7f
reference_id
reference_type
scores
url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9002fd07327a91f35ba6c1307e71fa6fd4409b7f

reference_url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=91ddeba0f2269b017dc06c46c993a788974b1aa5
reference_id
reference_type
scores
url	https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=91ddeba0f2269b017dc06c46c993a788974b1aa5

reference_url	https://www.openssl.org/news/secadv/20230731.txt
reference_id
reference_type
scores
url	https://www.openssl.org/news/secadv/20230731.txt

reference_url	http://www.openwall.com/lists/oss-security/2023/07/31/1
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2023/07/31/1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2227852
reference_id	2227852
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2227852

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-3817
reference_id	CVE-2023-3817
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-3817

reference_url	https://access.redhat.com/errata/RHSA-2023:5931
reference_id	RHSA-2023:5931
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5931

reference_url	https://access.redhat.com/errata/RHSA-2023:7622
reference_id	RHSA-2023:7622
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7622

reference_url	https://access.redhat.com/errata/RHSA-2023:7623
reference_id	RHSA-2023:7623
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7623

reference_url	https://access.redhat.com/errata/RHSA-2023:7625
reference_id	RHSA-2023:7625
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7625

reference_url	https://access.redhat.com/errata/RHSA-2023:7626
reference_id	RHSA-2023:7626
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7626

reference_url	https://access.redhat.com/errata/RHSA-2023:7877
reference_id	RHSA-2023:7877
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7877

reference_url	https://access.redhat.com/errata/RHSA-2024:0154
reference_id	RHSA-2024:0154
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0154

reference_url	https://access.redhat.com/errata/RHSA-2024:0208
reference_id	RHSA-2024:0208
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0208

reference_url	https://access.redhat.com/errata/RHSA-2024:2447
reference_id	RHSA-2024:2447
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2447

fixed_packages

url	pkg:conan/openssl@1.1.1w
purl	pkg:conan/openssl@1.1.1w
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:conan/openssl@1.1.1w

url pkg:conan/openssl@3.0.12

purl pkg:conan/openssl@3.0.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-nx5k-32hq-yuh4

resource_url http://public2.vulnerablecode.io/packages/pkg:conan/openssl@3.0.12

url	pkg:conan/openssl@3.1.3
purl	pkg:conan/openssl@3.1.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:conan/openssl@3.1.3

aliases CVE-2023-3817

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w1qj-n768-hbar

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:conan/openssl@1.1.1h

Package Instance