Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-2f49-5tcr-p7ag

Summary An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the extension info message (RFC 8308) via a man-in-the-middle attack.

Aliases

alias	CVE-2023-46445

alias	GHSA-cfc2-wr2v-gxm5

alias	PYSEC-2023-237

Fixed_packages

url	pkg:deb/debian/python-asyncssh@2.5.0-0.1?distro=trixie
purl	pkg:deb/debian/python-asyncssh@2.5.0-0.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.5.0-0.1%3Fdistro=trixie

url	pkg:deb/debian/python-asyncssh@2.5.0-0.1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/python-asyncssh@2.5.0-0.1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.5.0-0.1%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/python-asyncssh@2.10.1-2%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/python-asyncssh@2.10.1-2%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.10.1-2%252Bdeb12u2%3Fdistro=trixie

url	pkg:deb/debian/python-asyncssh@2.10.1-2%2Bdeb12u2
purl	pkg:deb/debian/python-asyncssh@2.10.1-2%2Bdeb12u2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.10.1-2%252Bdeb12u2

url	pkg:deb/debian/python-asyncssh@2.15.0-1?distro=trixie
purl	pkg:deb/debian/python-asyncssh@2.15.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.15.0-1%3Fdistro=trixie

url	pkg:deb/debian/python-asyncssh@2.20.0-1?distro=trixie
purl	pkg:deb/debian/python-asyncssh@2.20.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.20.0-1%3Fdistro=trixie

url	pkg:deb/debian/python-asyncssh@2.22.0-1?distro=trixie
purl	pkg:deb/debian/python-asyncssh@2.22.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.22.0-1%3Fdistro=trixie

url pkg:pypi/asyncssh@2.14.1

purl pkg:pypi/asyncssh@2.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-uqtv-u3b9-mbbb

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.14.1

Affected_packages

url pkg:deb/debian/python-asyncssh@1.12.2-1

purl pkg:deb/debian/python-asyncssh@1.12.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@1.12.2-1

url pkg:deb/debian/python-asyncssh@2.5.0-0.1

purl pkg:deb/debian/python-asyncssh@2.5.0-0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-jzn6-bzzf-nugp

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-asyncssh@2.5.0-0.1

url pkg:pypi/asyncssh@0.8.1

purl pkg:pypi/asyncssh@0.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.8.1

url pkg:pypi/asyncssh@0.8.2

purl pkg:pypi/asyncssh@0.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.8.2

url pkg:pypi/asyncssh@0.8.3

purl pkg:pypi/asyncssh@0.8.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.8.3

url pkg:pypi/asyncssh@0.8.4

purl pkg:pypi/asyncssh@0.8.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.8.4

url pkg:pypi/asyncssh@0.9.0

purl pkg:pypi/asyncssh@0.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.9.0

url pkg:pypi/asyncssh@0.9.1

purl pkg:pypi/asyncssh@0.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.9.1

url pkg:pypi/asyncssh@0.9.2

purl pkg:pypi/asyncssh@0.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@0.9.2

url pkg:pypi/asyncssh@1.0.0

purl pkg:pypi/asyncssh@1.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.0.0

url pkg:pypi/asyncssh@1.0.1

purl pkg:pypi/asyncssh@1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.0.1

url pkg:pypi/asyncssh@1.1.0

purl pkg:pypi/asyncssh@1.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.1.0

url pkg:pypi/asyncssh@1.1.1

purl pkg:pypi/asyncssh@1.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.1.1

url pkg:pypi/asyncssh@1.2.0

purl pkg:pypi/asyncssh@1.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.2.0

url pkg:pypi/asyncssh@1.2.1

purl pkg:pypi/asyncssh@1.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.2.1

url pkg:pypi/asyncssh@1.3.0

purl pkg:pypi/asyncssh@1.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.3.0

url pkg:pypi/asyncssh@1.3.1

purl pkg:pypi/asyncssh@1.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.3.1

url pkg:pypi/asyncssh@1.3.2

purl pkg:pypi/asyncssh@1.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.3.2

url pkg:pypi/asyncssh@1.4.0

purl pkg:pypi/asyncssh@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.4.0

url pkg:pypi/asyncssh@1.4.1

purl pkg:pypi/asyncssh@1.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.4.1

url pkg:pypi/asyncssh@1.5.0

purl pkg:pypi/asyncssh@1.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.0

url pkg:pypi/asyncssh@1.5.1

purl pkg:pypi/asyncssh@1.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.1

url pkg:pypi/asyncssh@1.5.2

purl pkg:pypi/asyncssh@1.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.2

url pkg:pypi/asyncssh@1.5.3

purl pkg:pypi/asyncssh@1.5.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.3

url pkg:pypi/asyncssh@1.5.4

purl pkg:pypi/asyncssh@1.5.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.4

url pkg:pypi/asyncssh@1.5.5

purl pkg:pypi/asyncssh@1.5.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.5

url pkg:pypi/asyncssh@1.5.6

purl pkg:pypi/asyncssh@1.5.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.5.6

url pkg:pypi/asyncssh@1.6.0

purl pkg:pypi/asyncssh@1.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.6.0

url pkg:pypi/asyncssh@1.6.1

purl pkg:pypi/asyncssh@1.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.6.1

url pkg:pypi/asyncssh@1.6.2

purl pkg:pypi/asyncssh@1.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.6.2

url pkg:pypi/asyncssh@1.7.1

purl pkg:pypi/asyncssh@1.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.7.1

url pkg:pypi/asyncssh@1.7.2

purl pkg:pypi/asyncssh@1.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.7.2

url pkg:pypi/asyncssh@1.7.3

purl pkg:pypi/asyncssh@1.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.7.3

url pkg:pypi/asyncssh@1.8.0

purl pkg:pypi/asyncssh@1.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.8.0

url pkg:pypi/asyncssh@1.8.1

purl pkg:pypi/asyncssh@1.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.8.1

url pkg:pypi/asyncssh@1.9.0

purl pkg:pypi/asyncssh@1.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.9.0

url pkg:pypi/asyncssh@1.10.0

purl pkg:pypi/asyncssh@1.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.10.0

url pkg:pypi/asyncssh@1.10.1

purl pkg:pypi/asyncssh@1.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.10.1

url pkg:pypi/asyncssh@1.11.0

purl pkg:pypi/asyncssh@1.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.11.0

url pkg:pypi/asyncssh@1.11.1

purl pkg:pypi/asyncssh@1.11.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.11.1

url pkg:pypi/asyncssh@1.12.0

purl pkg:pypi/asyncssh@1.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-fuj2-g5nb-bqaq

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.12.0

url pkg:pypi/asyncssh@1.12.1

purl pkg:pypi/asyncssh@1.12.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.12.1

url pkg:pypi/asyncssh@1.12.2

purl pkg:pypi/asyncssh@1.12.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.12.2

url pkg:pypi/asyncssh@1.13.0

purl pkg:pypi/asyncssh@1.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.13.0

url pkg:pypi/asyncssh@1.13.1

purl pkg:pypi/asyncssh@1.13.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.13.1

url pkg:pypi/asyncssh@1.13.2

purl pkg:pypi/asyncssh@1.13.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.13.2

url pkg:pypi/asyncssh@1.13.3

purl pkg:pypi/asyncssh@1.13.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.13.3

url pkg:pypi/asyncssh@1.14.0

purl pkg:pypi/asyncssh@1.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.14.0

url pkg:pypi/asyncssh@1.15.0

purl pkg:pypi/asyncssh@1.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.15.0

url pkg:pypi/asyncssh@1.15.1

purl pkg:pypi/asyncssh@1.15.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.15.1

url pkg:pypi/asyncssh@1.16.0

purl pkg:pypi/asyncssh@1.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.16.0

url pkg:pypi/asyncssh@1.16.1

purl pkg:pypi/asyncssh@1.16.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.16.1

url pkg:pypi/asyncssh@1.17.0

purl pkg:pypi/asyncssh@1.17.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.17.0

url pkg:pypi/asyncssh@1.17.1

purl pkg:pypi/asyncssh@1.17.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.17.1

url pkg:pypi/asyncssh@1.18.0

purl pkg:pypi/asyncssh@1.18.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@1.18.0

url pkg:pypi/asyncssh@2.0.0

purl pkg:pypi/asyncssh@2.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.0.0

url pkg:pypi/asyncssh@2.0.1

purl pkg:pypi/asyncssh@2.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.0.1

url pkg:pypi/asyncssh@2.1.0

purl pkg:pypi/asyncssh@2.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.1.0

url pkg:pypi/asyncssh@2.2.0

purl pkg:pypi/asyncssh@2.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.2.0

url pkg:pypi/asyncssh@2.2.1

purl pkg:pypi/asyncssh@2.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.2.1

url pkg:pypi/asyncssh@2.3.0

purl pkg:pypi/asyncssh@2.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.3.0

url pkg:pypi/asyncssh@2.4.0

purl pkg:pypi/asyncssh@2.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.4.0

url pkg:pypi/asyncssh@2.4.1

purl pkg:pypi/asyncssh@2.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.4.1

url pkg:pypi/asyncssh@2.4.2

purl pkg:pypi/asyncssh@2.4.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.4.2

url pkg:pypi/asyncssh@2.5.0

purl pkg:pypi/asyncssh@2.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.5.0

url pkg:pypi/asyncssh@2.6.0

purl pkg:pypi/asyncssh@2.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.6.0

url pkg:pypi/asyncssh@2.7.0

purl pkg:pypi/asyncssh@2.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.7.0

url pkg:pypi/asyncssh@2.7.1

purl pkg:pypi/asyncssh@2.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.7.1

url pkg:pypi/asyncssh@2.7.2

purl pkg:pypi/asyncssh@2.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.7.2

url pkg:pypi/asyncssh@2.8.0

purl pkg:pypi/asyncssh@2.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.8.0

url pkg:pypi/asyncssh@2.8.1

purl pkg:pypi/asyncssh@2.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.8.1

url pkg:pypi/asyncssh@2.9.0

purl pkg:pypi/asyncssh@2.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.9.0

url pkg:pypi/asyncssh@2.10.0

purl pkg:pypi/asyncssh@2.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.10.0

url pkg:pypi/asyncssh@2.10.1

purl pkg:pypi/asyncssh@2.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.10.1

url pkg:pypi/asyncssh@2.11.0

purl pkg:pypi/asyncssh@2.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.11.0

url pkg:pypi/asyncssh@2.12.0

purl pkg:pypi/asyncssh@2.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.12.0

url pkg:pypi/asyncssh@2.13.0

purl pkg:pypi/asyncssh@2.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.13.0

url pkg:pypi/asyncssh@2.13.1

purl pkg:pypi/asyncssh@2.13.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.13.1

url pkg:pypi/asyncssh@2.13.2

purl pkg:pypi/asyncssh@2.13.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.13.2

url pkg:pypi/asyncssh@2.14.0

purl pkg:pypi/asyncssh@2.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f49-5tcr-p7ag

vulnerability	VCID-uqtv-u3b9-mbbb

vulnerability	VCID-vud9-cch1-zyff

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/asyncssh@2.14.0

References

reference_url

http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46445.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46445.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-46445

reference_id

reference_type

scores

value	0.00448
scoring_system	epss
scoring_elements	0.63594
published_at	2026-04-21T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65436
published_at	2026-04-13T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65464
published_at	2026-04-12T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65432
published_at	2026-04-04T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65394
published_at	2026-04-07T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65458
published_at	2026-04-09T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65484
published_at	2026-04-18T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65405
published_at	2026-04-02T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65473
published_at	2026-04-16T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65477
published_at	2026-04-11T12:55:00Z

value	0.00487
scoring_system	epss
scoring_elements	0.65447
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-46445

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46445
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46445

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/asyncssh/PYSEC-2023-237.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/asyncssh/PYSEC-2023-237.yaml

reference_url

https://github.com/ronf/asyncssh

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ronf/asyncssh

reference_url

https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst

reference_url

https://github.com/ronf/asyncssh/commit/83e43f5ea3470a8617fc388c72b062c7136efd7e

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ronf/asyncssh/commit/83e43f5ea3470a8617fc388c72b062c7136efd7e

reference_url

https://github.com/ronf/asyncssh/security/advisories/GHSA-cfc2-wr2v-gxm5

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/ronf/asyncssh/security/advisories/GHSA-cfc2-wr2v-gxm5

reference_url

https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ME34ROZWMDK5KLMZKTSA422XVJZ7IMTE

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ME34ROZWMDK5KLMZKTSA422XVJZ7IMTE

reference_url

https://security.netapp.com/advisory/ntap-20231222-0001

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20231222-0001

reference_url

https://www.terrapin-attack.com

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.terrapin-attack.com

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056000
reference_id	1056000
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1056000

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2250326
reference_id	2250326
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2250326

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-46445

reference_id

CVE-2023-46445

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-46445

reference_url

https://github.com/advisories/GHSA-cfc2-wr2v-gxm5

reference_id

GHSA-cfc2-wr2v-gxm5

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-cfc2-wr2v-gxm5

reference_url	https://usn.ubuntu.com/7108-1/
reference_id	USN-7108-1
reference_type
scores
url	https://usn.ubuntu.com/7108-1/

reference_url	https://usn.ubuntu.com/7108-2/
reference_id	USN-7108-2
reference_type
scores
url	https://usn.ubuntu.com/7108-2/

Weaknesses

cwe_id	345
name	Insufficient Verification of Data Authenticity
description	The product does not sufficiently verify the origin or authenticity of data, in a way that causes it to accept invalid data.

cwe_id	349
name	Acceptance of Extraneous Untrusted Data With Trusted Data
description	The product, when processing trusted data, accepts any untrusted data that is also included with the trusted data, treating the untrusted data as if it were trusted.

cwe_id	354
name	Improper Validation of Integrity Check Value
description	The product does not validate or incorrectly validates the integrity check values or checksums of a message. This may prevent it from detecting if the data has been modified or corrupted in transmission.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2f49-5tcr-p7ag

Vulnerability Instance