Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-qx4m-q293-ckhj

Summary Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store. These are in the process of being removed from Mozilla's trust store. e-Tugra's root certificates are being removed pursuant to an investigation prompted by reporting of security issues in their systems.

Aliases

alias	CVE-2023-37920

alias	GHSA-xqr8-7jwr-rhp7

alias	PYSEC-2023-135

Fixed_packages

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=aarch64&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=aarch64&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=aarch64&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=ppc64le&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=ppc64le&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=ppc64le&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=s390x&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=s390x&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=s390x&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=x86&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=x86&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=x86&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=x86_64&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=x86_64&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=x86_64&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=armhf&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=armhf&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=armhf&distroversion=v3.18&reponame=main

url	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=armv7&distroversion=v3.18&reponame=main
purl	pkg:apk/alpine/py3-certifi@2023.7.22-r0?arch=armv7&distroversion=v3.18&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/py3-certifi@2023.7.22-r0%3Farch=armv7&distroversion=v3.18&reponame=main

url	pkg:deb/debian/python-certifi@2023.7.22-1?distro=trixie
purl	pkg:deb/debian/python-certifi@2023.7.22-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2023.7.22-1%3Fdistro=trixie

url	pkg:deb/debian/python-certifi@2025.1.31%2Bds-1
purl	pkg:deb/debian/python-certifi@2025.1.31%2Bds-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2025.1.31%252Bds-1

url	pkg:deb/debian/python-certifi@2025.1.31%2Bds-1?distro=trixie
purl	pkg:deb/debian/python-certifi@2025.1.31%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2025.1.31%252Bds-1%3Fdistro=trixie

url	pkg:deb/debian/python-certifi@2026.2.25%2Bds-1?distro=trixie
purl	pkg:deb/debian/python-certifi@2026.2.25%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2026.2.25%252Bds-1%3Fdistro=trixie

url pkg:pypi/certifi@2023.7.22

purl pkg:pypi/certifi@2023.7.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2023.7.22

Affected_packages

url pkg:deb/debian/python-certifi@2020.6.20-1?distro=trixie

purl pkg:deb/debian/python-certifi@2020.6.20-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2020.6.20-1%3Fdistro=trixie

url pkg:deb/debian/python-certifi@2020.6.20-1

purl pkg:deb/debian/python-certifi@2020.6.20-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2020.6.20-1

url pkg:deb/debian/python-certifi@2022.9.24-1?distro=trixie

purl pkg:deb/debian/python-certifi@2022.9.24-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2022.9.24-1%3Fdistro=trixie

url pkg:deb/debian/python-certifi@2022.9.24-1

purl pkg:deb/debian/python-certifi@2022.9.24-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-certifi@2022.9.24-1

url pkg:pypi/certifi@2015.4.28

purl pkg:pypi/certifi@2015.4.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.4.28

url pkg:pypi/certifi@2015.04.28

purl pkg:pypi/certifi@2015.04.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.04.28

url pkg:pypi/certifi@2015.9.6

purl pkg:pypi/certifi@2015.9.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.9.6

url pkg:pypi/certifi@2015.9.6.1

purl pkg:pypi/certifi@2015.9.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.9.6.1

url pkg:pypi/certifi@2015.9.6.2

purl pkg:pypi/certifi@2015.9.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.9.6.2

url pkg:pypi/certifi@2015.11.20

purl pkg:pypi/certifi@2015.11.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.11.20

url pkg:pypi/certifi@2015.11.20.1

purl pkg:pypi/certifi@2015.11.20.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2015.11.20.1

url pkg:pypi/certifi@2016.2.28

purl pkg:pypi/certifi@2016.2.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2016.2.28

url pkg:pypi/certifi@2016.8.2

purl pkg:pypi/certifi@2016.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2016.8.2

url pkg:pypi/certifi@2016.8.8

purl pkg:pypi/certifi@2016.8.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2016.8.8

url pkg:pypi/certifi@2016.8.31

purl pkg:pypi/certifi@2016.8.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2016.8.31

url pkg:pypi/certifi@2016.9.26

purl pkg:pypi/certifi@2016.9.26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2016.9.26

url pkg:pypi/certifi@2017.1.23

purl pkg:pypi/certifi@2017.1.23

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2017.1.23

url pkg:pypi/certifi@2017.4.17

purl pkg:pypi/certifi@2017.4.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2017.4.17

url pkg:pypi/certifi@2017.7.27

purl pkg:pypi/certifi@2017.7.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2017.7.27

url pkg:pypi/certifi@2017.7.27.1

purl pkg:pypi/certifi@2017.7.27.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2017.7.27.1

url pkg:pypi/certifi@2017.11.5

purl pkg:pypi/certifi@2017.11.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2017.11.5

url pkg:pypi/certifi@2018.1.18

purl pkg:pypi/certifi@2018.1.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2018.1.18

url pkg:pypi/certifi@2018.4.16

purl pkg:pypi/certifi@2018.4.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2018.4.16

url pkg:pypi/certifi@2018.8.13

purl pkg:pypi/certifi@2018.8.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2018.8.13

url pkg:pypi/certifi@2018.8.24

purl pkg:pypi/certifi@2018.8.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2018.8.24

url pkg:pypi/certifi@2018.10.15

purl pkg:pypi/certifi@2018.10.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2018.10.15

url pkg:pypi/certifi@2018.11.29

purl pkg:pypi/certifi@2018.11.29

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2018.11.29

url pkg:pypi/certifi@2019.3.9

purl pkg:pypi/certifi@2019.3.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2019.3.9

url pkg:pypi/certifi@2019.6.16

purl pkg:pypi/certifi@2019.6.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2019.6.16

url pkg:pypi/certifi@2019.9.11

purl pkg:pypi/certifi@2019.9.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2019.9.11

url pkg:pypi/certifi@2019.11.28

purl pkg:pypi/certifi@2019.11.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2019.11.28

url pkg:pypi/certifi@2020.4.5

purl pkg:pypi/certifi@2020.4.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2020.4.5

url pkg:pypi/certifi@2020.4.5.1

purl pkg:pypi/certifi@2020.4.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2020.4.5.1

url pkg:pypi/certifi@2020.4.5.2

purl pkg:pypi/certifi@2020.4.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2020.4.5.2

url pkg:pypi/certifi@2020.6.20

purl pkg:pypi/certifi@2020.6.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2020.6.20

url pkg:pypi/certifi@2020.11.8

purl pkg:pypi/certifi@2020.11.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2020.11.8

url pkg:pypi/certifi@2020.12.5

purl pkg:pypi/certifi@2020.12.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2020.12.5

url pkg:pypi/certifi@2021.5.30

purl pkg:pypi/certifi@2021.5.30

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2021.5.30

url pkg:pypi/certifi@2021.10.8

purl pkg:pypi/certifi@2021.10.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2021.10.8

url pkg:pypi/certifi@2022.5.18

purl pkg:pypi/certifi@2022.5.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.5.18

url pkg:pypi/certifi@2022.5.18.1

purl pkg:pypi/certifi@2022.5.18.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.5.18.1

url pkg:pypi/certifi@2022.6.15

purl pkg:pypi/certifi@2022.6.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.6.15

url pkg:pypi/certifi@2022.6.15.1

purl pkg:pypi/certifi@2022.6.15.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.6.15.1

url pkg:pypi/certifi@2022.6.15.2

purl pkg:pypi/certifi@2022.6.15.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.6.15.2

url pkg:pypi/certifi@2022.9.14

purl pkg:pypi/certifi@2022.9.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.9.14

url pkg:pypi/certifi@2022.9.24

purl pkg:pypi/certifi@2022.9.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-ae1s-qa4g-eyes

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.9.24

url pkg:pypi/certifi@2022.12.7

purl pkg:pypi/certifi@2022.12.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2022.12.7

url pkg:pypi/certifi@2023.5.7

purl pkg:pypi/certifi@2023.5.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2wd3-e3mb-ebgn

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/certifi@2023.5.7

url pkg:rpm/redhat/ca-certificates@2024.2.69_v8.0.303-80.0?arch=el8_10

purl pkg:rpm/redhat/ca-certificates@2024.2.69_v8.0.303-80.0?arch=el8_10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ca-certificates@2024.2.69_v8.0.303-80.0%3Farch=el8_10

url pkg:rpm/redhat/ca-certificates@2024.2.69_v8.0.303-91.4?arch=el9_4

purl pkg:rpm/redhat/ca-certificates@2024.2.69_v8.0.303-91.4?arch=el9_4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ca-certificates@2024.2.69_v8.0.303-91.4%3Farch=el9_4

url pkg:rpm/redhat/fence-agents@4.2.1-30.el8_1?arch=10

purl pkg:rpm/redhat/fence-agents@4.2.1-30.el8_1?arch=10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-30.el8_1%3Farch=10

url pkg:rpm/redhat/fence-agents@4.2.1-41.el8_2?arch=12

purl pkg:rpm/redhat/fence-agents@4.2.1-41.el8_2?arch=12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-41.el8_2%3Farch=12

url pkg:rpm/redhat/fence-agents@4.2.1-65.el8_4?arch=13

purl pkg:rpm/redhat/fence-agents@4.2.1-65.el8_4?arch=13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-65.el8_4%3Farch=13

url pkg:rpm/redhat/fence-agents@4.2.1-89.el8_6?arch=10

purl pkg:rpm/redhat/fence-agents@4.2.1-89.el8_6?arch=10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-89.el8_6%3Farch=10

url pkg:rpm/redhat/fence-agents@4.2.1-112.el8_8?arch=2

purl pkg:rpm/redhat/fence-agents@4.2.1-112.el8_8?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-112.el8_8%3Farch=2

url pkg:rpm/redhat/fence-agents@4.2.1-121.el8_9?arch=2

purl pkg:rpm/redhat/fence-agents@4.2.1-121.el8_9?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-121.el8_9%3Farch=2

url pkg:rpm/redhat/fence-agents@4.10.0-20.el9_0?arch=10

purl pkg:rpm/redhat/fence-agents@4.10.0-20.el9_0?arch=10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.10.0-20.el9_0%3Farch=10

url pkg:rpm/redhat/fence-agents@4.10.0-43.el9_2?arch=2

purl pkg:rpm/redhat/fence-agents@4.10.0-43.el9_2?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.10.0-43.el9_2%3Farch=2

url pkg:rpm/redhat/fence-agents@4.10.0-55.el9_3?arch=2

purl pkg:rpm/redhat/fence-agents@4.10.0-55.el9_3?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-969r-9mvk-uyh4

vulnerability	VCID-qx4m-q293-ckhj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.10.0-55.el9_3%3Farch=2

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-37920.json

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-37920.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-37920

reference_id

reference_type

scores

value	0.00112
scoring_system	epss
scoring_elements	0.29576
published_at	2026-04-18T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29601
published_at	2026-04-16T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29583
published_at	2026-04-13T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29633
published_at	2026-04-12T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29677
published_at	2026-04-11T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29675
published_at	2026-04-09T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29637
published_at	2026-04-08T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29575
published_at	2026-04-07T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29755
published_at	2026-04-04T12:55:00Z

value	0.00112
scoring_system	epss
scoring_elements	0.29705
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-37920

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37920
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-37920

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/certifi/python-certifi

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/certifi/python-certifi

reference_url

https://github.com/certifi/python-certifi/commit/8fb96ed81f71e7097ed11bc4d9b19afd7ea5c909

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-05T18:38:32Z/

url

https://github.com/certifi/python-certifi/commit/8fb96ed81f71e7097ed11bc4d9b19afd7ea5c909

reference_url

https://github.com/certifi/python-certifi/security/advisories/GHSA-xqr8-7jwr-rhp7

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-05T18:38:32Z/

url

https://github.com/certifi/python-certifi/security/advisories/GHSA-xqr8-7jwr-rhp7

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/certifi/PYSEC-2023-135.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/certifi/PYSEC-2023-135.yaml

reference_url

https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/C-HrP1SEq1A

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-05T18:38:32Z/

url

https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/C-HrP1SEq1A

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EX6NG7WUFNUKGFHLM35KHHU3GAKXRTG

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EX6NG7WUFNUKGFHLM35KHHU3GAKXRTG

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-37920

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-37920

reference_url

https://security.netapp.com/advisory/ntap-20240912-0002

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20240912-0002

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2226586
reference_id	2226586
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2226586

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EX6NG7WUFNUKGFHLM35KHHU3GAKXRTG/

reference_id

5EX6NG7WUFNUKGFHLM35KHHU3GAKXRTG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-05T18:38:32Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EX6NG7WUFNUKGFHLM35KHHU3GAKXRTG/

reference_url

https://github.com/advisories/GHSA-xqr8-7jwr-rhp7

reference_id

GHSA-xqr8-7jwr-rhp7

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-xqr8-7jwr-rhp7

reference_url	https://access.redhat.com/errata/RHSA-2023:6812
reference_id	RHSA-2023:6812
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6812

reference_url	https://access.redhat.com/errata/RHSA-2023:7378
reference_id	RHSA-2023:7378
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7378

reference_url	https://access.redhat.com/errata/RHSA-2023:7385
reference_id	RHSA-2023:7385
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7385

reference_url	https://access.redhat.com/errata/RHSA-2023:7407
reference_id	RHSA-2023:7407
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7407

reference_url	https://access.redhat.com/errata/RHSA-2023:7435
reference_id	RHSA-2023:7435
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7435

reference_url	https://access.redhat.com/errata/RHSA-2023:7523
reference_id	RHSA-2023:7523
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7523

reference_url	https://access.redhat.com/errata/RHSA-2023:7528
reference_id	RHSA-2023:7528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7528

reference_url	https://access.redhat.com/errata/RHSA-2023:7753
reference_id	RHSA-2023:7753
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7753

reference_url	https://access.redhat.com/errata/RHSA-2024:0133
reference_id	RHSA-2024:0133
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0133

reference_url	https://access.redhat.com/errata/RHSA-2024:8228
reference_id	RHSA-2024:8228
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8228

Weaknesses

cwe_id	345
name	Insufficient Verification of Data Authenticity
description	The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 7.0 - 9.1

Exploitability 0.5

Weighted_severity 8.2

Risk_score 4.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qx4m-q293-ckhj

Vulnerability Instance