Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/openssl@3.3.3-r0?arch=aarch64&distroversion=v3.20&reponame=main
Typeapk
Namespacealpine
Nameopenssl
Version3.3.3-r0
Qualifiers
arch aarch64
distroversion v3.20
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version3.3.5-r0
Latest_non_vulnerable_version3.3.7-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-gqj1-zam7-c3bv
vulnerability_id VCID-gqj1-zam7-c3bv
summary 
Vulnerable OpenSSL included in cryptography wheels
pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in cryptography 42.0.0-44.0.0 are vulnerable to a security issue. More details about the vulnerability itself can be found in https://openssl-library.org/news/secadv/20250211.txt.

If you are building cryptography source ("sdist") then you are responsible for upgrading your copy of OpenSSL. Only users installing from wheels built by the cryptography project (i.e., those distributed on PyPI) need to update their cryptography versions.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12797.json
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12797.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-12797
reference_id
reference_type
scores
0
value 0.00773
scoring_system epss
scoring_elements 0.73622
published_at 2026-04-18T12:55:00Z
1
value 0.00773
scoring_system epss
scoring_elements 0.73613
published_at 2026-04-16T12:55:00Z
2
value 0.00773
scoring_system epss
scoring_elements 0.73551
published_at 2026-04-04T12:55:00Z
3
value 0.00773
scoring_system epss
scoring_elements 0.7357
published_at 2026-04-13T12:55:00Z
4
value 0.00773
scoring_system epss
scoring_elements 0.73578
published_at 2026-04-12T12:55:00Z
5
value 0.00773
scoring_system epss
scoring_elements 0.73595
published_at 2026-04-11T12:55:00Z
6
value 0.00773
scoring_system epss
scoring_elements 0.73572
published_at 2026-04-09T12:55:00Z
7
value 0.00773
scoring_system epss
scoring_elements 0.73559
published_at 2026-04-08T12:55:00Z
8
value 0.00773
scoring_system epss
scoring_elements 0.73523
published_at 2026-04-07T12:55:00Z
9
value 0.00773
scoring_system epss
scoring_elements 0.73528
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-12797
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value LOW
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-14T20:24:14Z/
url https://github.com/openssl/openssl/commit/738d4f9fdeaad57660dcba50a619fafced3fd5e9
4
reference_url https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value LOW
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-14T20:24:14Z/
url https://github.com/openssl/openssl/commit/798779d43494549b611233f92652f0da5328fbe7
5
reference_url https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value LOW
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-14T20:24:14Z/
url https://github.com/openssl/openssl/commit/87ebd203feffcf92ad5889df92f90bb0ee10a699
6
reference_url https://github.com/pyca/cryptography
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/pyca/cryptography
7
reference_url https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g
reference_id
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
1
value LOW
scoring_system generic_textual
scoring_elements
url https://github.com/pyca/cryptography/security/advisories/GHSA-79v4-65xg-pq4g
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-12797
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-12797
9
reference_url https://openssl-library.org/news/secadv/20250211.txt
reference_id
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value LOW
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-14T20:24:14Z/
url https://openssl-library.org/news/secadv/20250211.txt
10
reference_url http://www.openwall.com/lists/oss-security/2025/02/11/3
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/02/11/3
11
reference_url http://www.openwall.com/lists/oss-security/2025/02/11/4
reference_id
reference_type
scores
0
value LOW
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2025/02/11/4
12
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095765
reference_id 1095765
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095765
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2342757
reference_id 2342757
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2342757
14
reference_url https://github.com/advisories/GHSA-79v4-65xg-pq4g
reference_id GHSA-79v4-65xg-pq4g
reference_type
scores
0
value LOW
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-79v4-65xg-pq4g
15
reference_url https://access.redhat.com/errata/RHSA-2025:1330
reference_id RHSA-2025:1330
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1330
16
reference_url https://access.redhat.com/errata/RHSA-2025:1487
reference_id RHSA-2025:1487
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1487
17
reference_url https://access.redhat.com/errata/RHSA-2025:1925
reference_id RHSA-2025:1925
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1925
18
reference_url https://access.redhat.com/errata/RHSA-2025:1985
reference_id RHSA-2025:1985
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:1985
19
reference_url https://access.redhat.com/errata/RHSA-2025:2754
reference_id RHSA-2025:2754
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:2754
20
reference_url https://access.redhat.com/errata/RHSA-2025:4005
reference_id RHSA-2025:4005
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:4005
21
reference_url https://access.redhat.com/errata/RHSA-2025:9895
reference_id RHSA-2025:9895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9895
22
reference_url https://usn.ubuntu.com/7264-1/
reference_id USN-7264-1
reference_type
scores
url https://usn.ubuntu.com/7264-1/
fixed_packages
0
url pkg:apk/alpine/openssl@3.3.3-r0?arch=aarch64&distroversion=v3.20&reponame=main
purl pkg:apk/alpine/openssl@3.3.3-r0?arch=aarch64&distroversion=v3.20&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.3-r0%3Farch=aarch64&distroversion=v3.20&reponame=main
aliases CVE-2024-12797, GHSA-79v4-65xg-pq4g
risk_score 3.4
exploitability 0.5
weighted_severity 6.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gqj1-zam7-c3bv
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.3-r0%3Farch=aarch64&distroversion=v3.20&reponame=main