Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/openssl@0.9.8k-1?distro=trixie

Type deb

Namespace debian

Name openssl

Version 0.9.8k-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 0.9.8k-2

Latest_non_vulnerable_version 3.6.2-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-cepc-ff12-syf7

vulnerability_id VCID-cepc-ff12-syf7

summary

Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct
    multiple attacks, including the injection of arbitrary data into encrypted
    byte streams.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1379.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1379.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1379

reference_id

reference_type

scores

value	0.08556
scoring_system	epss
scoring_elements	0.92365
published_at	2026-04-01T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92372
published_at	2026-04-02T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92379
published_at	2026-04-04T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92382
published_at	2026-04-07T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92394
published_at	2026-04-08T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92399
published_at	2026-04-09T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92405
published_at	2026-04-13T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92407
published_at	2026-04-12T12:55:00Z

value	0.08556
scoring_system	epss
scoring_elements	0.92416
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1379

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1379
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1379

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=501572
reference_id	501572
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=501572

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530400
reference_id	530400
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530400

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/8720.c
reference_id	CVE-2009-1379;OSVDB-54614
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/8720.c

reference_url	https://security.gentoo.org/glsa/200912-01
reference_id	GLSA-200912-01
reference_type
scores
url	https://security.gentoo.org/glsa/200912-01

reference_url	https://access.redhat.com/errata/RHSA-2009:1335
reference_id	RHSA-2009:1335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1335

reference_url	https://usn.ubuntu.com/792-1/
reference_id	USN-792-1
reference_type
scores
url	https://usn.ubuntu.com/792-1/

fixed_packages

url	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
purl	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8k-1%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

aliases CVE-2009-1379

risk_score 0.2

exploitability 2.0

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cepc-ff12-syf7

url VCID-cj9q-gyca-4yca

vulnerability_id VCID-cj9q-gyca-4yca

summary

Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct
    multiple attacks, including the injection of arbitrary data into encrypted
    byte streams.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1377.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1377.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1377

reference_id

reference_type

scores

value	0.02884
scoring_system	epss
scoring_elements	0.86238
published_at	2026-04-01T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86247
published_at	2026-04-02T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86265
published_at	2026-04-04T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86266
published_at	2026-04-07T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86284
published_at	2026-04-08T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86295
published_at	2026-04-09T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86309
published_at	2026-04-11T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86307
published_at	2026-04-12T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86303
published_at	2026-04-13T12:55:00Z

value	0.02884
scoring_system	epss
scoring_elements	0.86319
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1377

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1377
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1377

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=501253
reference_id	501253
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=501253

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530400
reference_id	530400
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530400

reference_url	https://security.gentoo.org/glsa/200912-01
reference_id	GLSA-200912-01
reference_type
scores
url	https://security.gentoo.org/glsa/200912-01

reference_url	https://access.redhat.com/errata/RHSA-2009:1335
reference_id	RHSA-2009:1335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1335

reference_url	https://usn.ubuntu.com/792-1/
reference_id	USN-792-1
reference_type
scores
url	https://usn.ubuntu.com/792-1/

fixed_packages

url	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
purl	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8k-1%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

aliases CVE-2009-1377

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cj9q-gyca-4yca

url VCID-mdgj-8zzd-gfgw

vulnerability_id VCID-mdgj-8zzd-gfgw

summary

Multiple vulnerabilities in OpenSSL might allow remote attackers to conduct
    multiple attacks, including the injection of arbitrary data into encrypted
    byte streams.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1378.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1378.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1378

reference_id

reference_type

scores

value	0.13245
scoring_system	epss
scoring_elements	0.94108
published_at	2026-04-01T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.94118
published_at	2026-04-02T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.9413
published_at	2026-04-04T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.94133
published_at	2026-04-07T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.94142
published_at	2026-04-08T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.94145
published_at	2026-04-09T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.9415
published_at	2026-04-13T12:55:00Z

value	0.13245
scoring_system	epss
scoring_elements	0.94166
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1378

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=501254
reference_id	501254
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=501254

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530400
reference_id	530400
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530400

reference_url	https://security.gentoo.org/glsa/200912-01
reference_id	GLSA-200912-01
reference_type
scores
url	https://security.gentoo.org/glsa/200912-01

reference_url	https://access.redhat.com/errata/RHSA-2009:1335
reference_id	RHSA-2009:1335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1335

reference_url	https://usn.ubuntu.com/792-1/
reference_id	USN-792-1
reference_type
scores
url	https://usn.ubuntu.com/792-1/

fixed_packages

url	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
purl	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8k-1%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

aliases CVE-2009-1378

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mdgj-8zzd-gfgw

url VCID-nqt4-k72v-mqfn

vulnerability_id VCID-nqt4-k72v-mqfn

summary openssl: DTLS NULL deref crash on early ChangeCipherSpec request

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1386.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1386.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1386

reference_id

reference_type

scores

value	0.47628
scoring_system	epss
scoring_elements	0.97683
published_at	2026-04-01T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.9769
published_at	2026-04-02T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97691
published_at	2026-04-07T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97696
published_at	2026-04-08T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97699
published_at	2026-04-09T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97701
published_at	2026-04-11T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97704
published_at	2026-04-12T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97705
published_at	2026-04-13T12:55:00Z

value	0.47628
scoring_system	epss
scoring_elements	0.97711
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1386

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1386
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1386

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=503685
reference_id	503685
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=503685

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=532037
reference_id	532037
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=532037

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/8873.c
reference_id	OSVDB-55073;CVE-2009-1386
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/8873.c

reference_url	https://access.redhat.com/errata/RHSA-2009:1335
reference_id	RHSA-2009:1335
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1335

reference_url	https://usn.ubuntu.com/792-1/
reference_id	USN-792-1
reference_type
scores
url	https://usn.ubuntu.com/792-1/

fixed_packages

url	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
purl	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8k-1%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

aliases CVE-2009-1386

risk_score 0.8

exploitability 2.0

weighted_severity 0.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nqt4-k72v-mqfn

url VCID-t64k-wgjb-fkhz

vulnerability_id VCID-t64k-wgjb-fkhz

summary openssl: NETSCAPE_REUSE_CIPHER_CHANGE_BUG downgrade-to-disabled ciphersuite attack

references

reference_url	http://cvs.openssl.org/chngview?cn=17489
reference_id
reference_type
scores
url	http://cvs.openssl.org/chngview?cn=17489

reference_url	http://marc.info/?l=bugtraq&m=132077688910227&w=2
reference_id
reference_type
scores
url	http://marc.info/?l=bugtraq&m=132077688910227&w=2

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-7270.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-7270.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-7270

reference_id

reference_type

scores

value	0.01096
scoring_system	epss
scoring_elements	0.77943
published_at	2026-04-01T12:55:00Z

value	0.01096
scoring_system	epss
scoring_elements	0.77959
published_at	2026-04-07T12:55:00Z

value	0.01096
scoring_system	epss
scoring_elements	0.77986
published_at	2026-04-08T12:55:00Z

value	0.01096
scoring_system	epss
scoring_elements	0.7799
published_at	2026-04-09T12:55:00Z

value	0.01096
scoring_system	epss
scoring_elements	0.78017
published_at	2026-04-11T12:55:00Z

value	0.01096
scoring_system	epss
scoring_elements	0.7795
published_at	2026-04-02T12:55:00Z

value	0.01096
scoring_system	epss
scoring_elements	0.77977
published_at	2026-04-04T12:55:00Z

value	0.01279
scoring_system	epss
scoring_elements	0.79578
published_at	2026-04-12T12:55:00Z

value	0.01279
scoring_system	epss
scoring_elements	0.7957
published_at	2026-04-13T12:55:00Z

value	0.01279
scoring_system	epss
scoring_elements	0.79599
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-7270

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7270
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-7270

reference_url	http://secunia.com/advisories/42493
reference_id
reference_type
scores
url	http://secunia.com/advisories/42493

reference_url	http://ubuntu.com/usn/usn-1029-1
reference_id
reference_type
scores
url	http://ubuntu.com/usn/usn-1029-1

reference_url	http://www.redhat.com/support/errata/RHSA-2010-0977.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2010-0977.html

reference_url	http://www.redhat.com/support/errata/RHSA-2010-0978.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2010-0978.html

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0896.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0896.html

reference_url	http://www.securityfocus.com/archive/1/522176
reference_id
reference_type
scores
url	http://www.securityfocus.com/archive/1/522176

reference_url	http://www.securityfocus.com/bid/45254
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/45254

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=660650
reference_id	660650
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=660650

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl::::::::
reference_id	cpe:2.3:a:openssl:openssl::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.1c:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.1c:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.1c:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.2b:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.2b:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.2b:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.3:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.3a:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.3a:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.3a:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.4:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5a:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.5a:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5a:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5a:beta1::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.5a:beta1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5a:beta1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5a:beta2::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.5a:beta2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5a:beta2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5:beta1::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.5:beta1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5:beta1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5:beta2::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.5:beta2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.5:beta2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6a:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:beta1::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.6a:beta1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:beta1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:beta2::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.6a:beta2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:beta2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:beta3::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.6a:beta3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6a:beta3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6b:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6b:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6b:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:beta1::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.6:beta1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:beta1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:beta2::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.6:beta2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:beta2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:beta3::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.6:beta3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6:beta3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6c:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6c:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6c:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6d:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6d:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6d:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6e:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6e:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6e:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6f:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6f:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6f:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6g:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6g:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6g:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6h:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6h:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6h:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6i:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6i:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6i:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6j:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6j:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6j:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6k:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6k:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6k:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6l:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6l:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6l:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6m:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.6m:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.6m:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7a:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7a:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7a:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7b:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7b:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7b:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta1::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:beta1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta2::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:beta2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta3::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:beta3::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta3::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta4::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:beta4::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta4::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta5::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:beta5::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta5::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta6::::::
reference_id	cpe:2.3:a:openssl:openssl:0.9.7:beta6::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7:beta6::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7c:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7c:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7c:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7d:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7d:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7d:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7e:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7e:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7e:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7f:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7f:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7f:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7g:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7g:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7g:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7h:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7h:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7h:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7i:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7i:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7i:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7j:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7j:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7j:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7k:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7k:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7k:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7l:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7l:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7l:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7m:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.7m:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.7m:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8a:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8a:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8a:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8b:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8b:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8b:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8c:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8c:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8c:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8d:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8d:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8d:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8e:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8e:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8e:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8f:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8f:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8f:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8g:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8g:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8g:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8h:::::::*
reference_id	cpe:2.3:a:openssl:openssl:0.9.8h:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openssl:openssl:0.9.8h:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-7270

reference_id

CVE-2008-7270

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2008-7270

reference_url	https://access.redhat.com/errata/RHSA-2010:0977
reference_id	RHSA-2010:0977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0977

reference_url	https://access.redhat.com/errata/RHSA-2010:0978
reference_id	RHSA-2010:0978
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0978

reference_url	https://usn.ubuntu.com/1029-1/
reference_id	USN-1029-1
reference_type
scores
url	https://usn.ubuntu.com/1029-1/

fixed_packages

url	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
purl	pkg:deb/debian/openssl@0.9.8k-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8k-1%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

aliases CVE-2008-7270

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t64k-wgjb-fkhz

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0.9.8k-1%3Fdistro=trixie

Package Instance