Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-xyku-dd6j-u3ex

Summary PyCryptodome and pycryptodomex before 3.19.1 allow side-channel leakage for OAEP decryption, exploitable for a Manger attack.

Aliases

alias	CVE-2023-52323

alias	GHSA-j225-cvw7-qrx7

alias	PYSEC-2024-3

Fixed_packages

url	pkg:deb/debian/pycryptodome@3.20.0%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/pycryptodome@3.20.0%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.20.0%252Bdfsg-1%3Fdistro=trixie

url	pkg:deb/debian/pycryptodome@3.20.0%2Bdfsg-3?distro=trixie
purl	pkg:deb/debian/pycryptodome@3.20.0%2Bdfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.20.0%252Bdfsg-3%3Fdistro=trixie

url	pkg:deb/debian/pycryptodome@3.20.0%2Bdfsg-3
purl	pkg:deb/debian/pycryptodome@3.20.0%2Bdfsg-3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.20.0%252Bdfsg-3

url	pkg:pypi/pycryptodome@3.19.1
purl	pkg:pypi/pycryptodome@3.19.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.19.1

url	pkg:pypi/pycryptodomex@3.19.1
purl	pkg:pypi/pycryptodomex@3.19.1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.19.1

Affected_packages

url pkg:deb/debian/pycryptodome@3.9.7%2Bdfsg1-1

purl pkg:deb/debian/pycryptodome@3.9.7%2Bdfsg1-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.9.7%252Bdfsg1-1

url pkg:deb/debian/pycryptodome@3.9.7%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/pycryptodome@3.9.7%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.9.7%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/pycryptodome@3.11.0%2Bdfsg1-4

purl pkg:deb/debian/pycryptodome@3.11.0%2Bdfsg1-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.11.0%252Bdfsg1-4

url pkg:deb/debian/pycryptodome@3.11.0%2Bdfsg1-4?distro=trixie

purl pkg:deb/debian/pycryptodome@3.11.0%2Bdfsg1-4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pycryptodome@3.11.0%252Bdfsg1-4%3Fdistro=trixie

url pkg:pypi/pycryptodome@3.0rc1

purl pkg:pypi/pycryptodome@3.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.0rc1

url pkg:pypi/pycryptodome@3.0

purl pkg:pypi/pycryptodome@3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.0

url pkg:pypi/pycryptodome@3.1

purl pkg:pypi/pycryptodome@3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.1

url pkg:pypi/pycryptodome@3.2

purl pkg:pypi/pycryptodome@3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.2

url pkg:pypi/pycryptodome@3.2.1

purl pkg:pypi/pycryptodome@3.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.2.1

url pkg:pypi/pycryptodome@3.3

purl pkg:pypi/pycryptodome@3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.3

url pkg:pypi/pycryptodome@3.3.1

purl pkg:pypi/pycryptodome@3.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.3.1

url pkg:pypi/pycryptodome@3.4

purl pkg:pypi/pycryptodome@3.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4

url pkg:pypi/pycryptodome@3.4.3

purl pkg:pypi/pycryptodome@3.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.3

url pkg:pypi/pycryptodome@3.4.4

purl pkg:pypi/pycryptodome@3.4.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.4

url pkg:pypi/pycryptodome@3.4.5

purl pkg:pypi/pycryptodome@3.4.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.5

url pkg:pypi/pycryptodome@3.4.6

purl pkg:pypi/pycryptodome@3.4.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.6

url pkg:pypi/pycryptodome@3.4.7

purl pkg:pypi/pycryptodome@3.4.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.7

url pkg:pypi/pycryptodome@3.4.8

purl pkg:pypi/pycryptodome@3.4.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.8

url pkg:pypi/pycryptodome@3.4.9

purl pkg:pypi/pycryptodome@3.4.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.9

url pkg:pypi/pycryptodome@3.4.11

purl pkg:pypi/pycryptodome@3.4.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.4.11

url pkg:pypi/pycryptodome@3.5.0

purl pkg:pypi/pycryptodome@3.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.5.0

url pkg:pypi/pycryptodome@3.5.1

purl pkg:pypi/pycryptodome@3.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.5.1

url pkg:pypi/pycryptodome@3.6.0

purl pkg:pypi/pycryptodome@3.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.6.0

url pkg:pypi/pycryptodome@3.6.1

purl pkg:pypi/pycryptodome@3.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.6.1

url pkg:pypi/pycryptodome@3.6.3

purl pkg:pypi/pycryptodome@3.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.6.3

url pkg:pypi/pycryptodome@3.6.4

purl pkg:pypi/pycryptodome@3.6.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.6.4

url pkg:pypi/pycryptodome@3.6.5

purl pkg:pypi/pycryptodome@3.6.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6gxf-2bj4-1qew

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.6.5

url pkg:pypi/pycryptodome@3.6.6

purl pkg:pypi/pycryptodome@3.6.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.6.6

url pkg:pypi/pycryptodome@3.7.0

purl pkg:pypi/pycryptodome@3.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.7.0

url pkg:pypi/pycryptodome@3.7.1

purl pkg:pypi/pycryptodome@3.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.7.1

url pkg:pypi/pycryptodome@3.7.2

purl pkg:pypi/pycryptodome@3.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.7.2

url pkg:pypi/pycryptodome@3.7.3

purl pkg:pypi/pycryptodome@3.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.7.3

url pkg:pypi/pycryptodome@3.8.0

purl pkg:pypi/pycryptodome@3.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.8.0

url pkg:pypi/pycryptodome@3.8.1

purl pkg:pypi/pycryptodome@3.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.8.1

url pkg:pypi/pycryptodome@3.8.2

purl pkg:pypi/pycryptodome@3.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.8.2

url pkg:pypi/pycryptodome@3.9.0

purl pkg:pypi/pycryptodome@3.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.0

url pkg:pypi/pycryptodome@3.9.1

purl pkg:pypi/pycryptodome@3.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.1

url pkg:pypi/pycryptodome@3.9.2

purl pkg:pypi/pycryptodome@3.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.2

url pkg:pypi/pycryptodome@3.9.3

purl pkg:pypi/pycryptodome@3.9.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.3

url pkg:pypi/pycryptodome@3.9.4

purl pkg:pypi/pycryptodome@3.9.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.4

url pkg:pypi/pycryptodome@3.9.6

purl pkg:pypi/pycryptodome@3.9.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.6

url pkg:pypi/pycryptodome@3.9.7

purl pkg:pypi/pycryptodome@3.9.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.7

url pkg:pypi/pycryptodome@3.9.8

purl pkg:pypi/pycryptodome@3.9.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.8

url pkg:pypi/pycryptodome@3.9.9

purl pkg:pypi/pycryptodome@3.9.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.9.9

url pkg:pypi/pycryptodome@3.10.1

purl pkg:pypi/pycryptodome@3.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.10.1

url pkg:pypi/pycryptodome@3.10.3

purl pkg:pypi/pycryptodome@3.10.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.10.3

url pkg:pypi/pycryptodome@3.10.4

purl pkg:pypi/pycryptodome@3.10.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.10.4

url pkg:pypi/pycryptodome@3.11.0

purl pkg:pypi/pycryptodome@3.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.11.0

url pkg:pypi/pycryptodome@3.12.0

purl pkg:pypi/pycryptodome@3.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.12.0

url pkg:pypi/pycryptodome@3.13.0

purl pkg:pypi/pycryptodome@3.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.13.0

url pkg:pypi/pycryptodome@3.14.0

purl pkg:pypi/pycryptodome@3.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.14.0

url pkg:pypi/pycryptodome@3.14.1

purl pkg:pypi/pycryptodome@3.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.14.1

url pkg:pypi/pycryptodome@3.15.0

purl pkg:pypi/pycryptodome@3.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.15.0

url pkg:pypi/pycryptodome@3.16.0

purl pkg:pypi/pycryptodome@3.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.16.0

url pkg:pypi/pycryptodome@3.17

purl pkg:pypi/pycryptodome@3.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.17

url pkg:pypi/pycryptodome@3.18.0

purl pkg:pypi/pycryptodome@3.18.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.18.0

url pkg:pypi/pycryptodome@3.19.0

purl pkg:pypi/pycryptodome@3.19.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodome@3.19.0

url pkg:pypi/pycryptodomex@3.4.1

purl pkg:pypi/pycryptodomex@3.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.1

url pkg:pypi/pycryptodomex@3.4.2

purl pkg:pypi/pycryptodomex@3.4.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.2

url pkg:pypi/pycryptodomex@3.4.3

purl pkg:pypi/pycryptodomex@3.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.3

url pkg:pypi/pycryptodomex@3.4.5

purl pkg:pypi/pycryptodomex@3.4.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.5

url pkg:pypi/pycryptodomex@3.4.6

purl pkg:pypi/pycryptodomex@3.4.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.6

url pkg:pypi/pycryptodomex@3.4.7

purl pkg:pypi/pycryptodomex@3.4.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.7

url pkg:pypi/pycryptodomex@3.4.8

purl pkg:pypi/pycryptodomex@3.4.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.8

url pkg:pypi/pycryptodomex@3.4.9

purl pkg:pypi/pycryptodomex@3.4.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.9

url pkg:pypi/pycryptodomex@3.4.11

purl pkg:pypi/pycryptodomex@3.4.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.11

url pkg:pypi/pycryptodomex@3.4.12

purl pkg:pypi/pycryptodomex@3.4.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.4.12

url pkg:pypi/pycryptodomex@3.5.1

purl pkg:pypi/pycryptodomex@3.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.5.1

url pkg:pypi/pycryptodomex@3.6.0

purl pkg:pypi/pycryptodomex@3.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.6.0

url pkg:pypi/pycryptodomex@3.6.1

purl pkg:pypi/pycryptodomex@3.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.6.1

url pkg:pypi/pycryptodomex@3.6.3

purl pkg:pypi/pycryptodomex@3.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.6.3

url pkg:pypi/pycryptodomex@3.6.4

purl pkg:pypi/pycryptodomex@3.6.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.6.4

url pkg:pypi/pycryptodomex@3.6.5

purl pkg:pypi/pycryptodomex@3.6.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.6.5

url pkg:pypi/pycryptodomex@3.6.6

purl pkg:pypi/pycryptodomex@3.6.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.6.6

url pkg:pypi/pycryptodomex@3.7.0

purl pkg:pypi/pycryptodomex@3.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.7.0

url pkg:pypi/pycryptodomex@3.7.1

purl pkg:pypi/pycryptodomex@3.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.7.1

url pkg:pypi/pycryptodomex@3.7.2

purl pkg:pypi/pycryptodomex@3.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.7.2

url pkg:pypi/pycryptodomex@3.7.3

purl pkg:pypi/pycryptodomex@3.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.7.3

url pkg:pypi/pycryptodomex@3.8.0

purl pkg:pypi/pycryptodomex@3.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.8.0

url pkg:pypi/pycryptodomex@3.8.1

purl pkg:pypi/pycryptodomex@3.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.8.1

url pkg:pypi/pycryptodomex@3.8.2

purl pkg:pypi/pycryptodomex@3.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.8.2

url pkg:pypi/pycryptodomex@3.9.0

purl pkg:pypi/pycryptodomex@3.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.0

url pkg:pypi/pycryptodomex@3.9.1

purl pkg:pypi/pycryptodomex@3.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.1

url pkg:pypi/pycryptodomex@3.9.2

purl pkg:pypi/pycryptodomex@3.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.2

url pkg:pypi/pycryptodomex@3.9.3

purl pkg:pypi/pycryptodomex@3.9.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.3

url pkg:pypi/pycryptodomex@3.9.4

purl pkg:pypi/pycryptodomex@3.9.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.4

url pkg:pypi/pycryptodomex@3.9.6

purl pkg:pypi/pycryptodomex@3.9.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.6

url pkg:pypi/pycryptodomex@3.9.7

purl pkg:pypi/pycryptodomex@3.9.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.7

url pkg:pypi/pycryptodomex@3.9.8

purl pkg:pypi/pycryptodomex@3.9.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.8

url pkg:pypi/pycryptodomex@3.9.9

purl pkg:pypi/pycryptodomex@3.9.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.9.9

url pkg:pypi/pycryptodomex@3.10.1

purl pkg:pypi/pycryptodomex@3.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.10.1

url pkg:pypi/pycryptodomex@3.10.3

purl pkg:pypi/pycryptodomex@3.10.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.10.3

url pkg:pypi/pycryptodomex@3.10.4

purl pkg:pypi/pycryptodomex@3.10.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.10.4

url pkg:pypi/pycryptodomex@3.11.0

purl pkg:pypi/pycryptodomex@3.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.11.0

url pkg:pypi/pycryptodomex@3.12.0

purl pkg:pypi/pycryptodomex@3.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.12.0

url pkg:pypi/pycryptodomex@3.13.0

purl pkg:pypi/pycryptodomex@3.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.13.0

url pkg:pypi/pycryptodomex@3.14.0

purl pkg:pypi/pycryptodomex@3.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.14.0

url pkg:pypi/pycryptodomex@3.14.1

purl pkg:pypi/pycryptodomex@3.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.14.1

url pkg:pypi/pycryptodomex@3.15.0

purl pkg:pypi/pycryptodomex@3.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.15.0

url pkg:pypi/pycryptodomex@3.16.0

purl pkg:pypi/pycryptodomex@3.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.16.0

100

url pkg:pypi/pycryptodomex@3.17

purl pkg:pypi/pycryptodomex@3.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.17

101

url pkg:pypi/pycryptodomex@3.18.0

purl pkg:pypi/pycryptodomex@3.18.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.18.0

102

url pkg:pypi/pycryptodomex@3.19.0

purl pkg:pypi/pycryptodomex@3.19.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/pycryptodomex@3.19.0

103

url pkg:rpm/redhat/fence-agents@4.2.1-129?arch=el8

purl pkg:rpm/redhat/fence-agents@4.2.1-129?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4evk-srqq-fuef

vulnerability	VCID-np94-ghhk-nug4

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.2.1-129%3Farch=el8

104

url pkg:rpm/redhat/fence-agents@4.10.0-20.el9_0?arch=11

purl pkg:rpm/redhat/fence-agents@4.10.0-20.el9_0?arch=11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4evk-srqq-fuef

vulnerability	VCID-np94-ghhk-nug4

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.10.0-20.el9_0%3Farch=11

105

url pkg:rpm/redhat/fence-agents@4.10.0-62?arch=el9

purl pkg:rpm/redhat/fence-agents@4.10.0-62?arch=el9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4evk-srqq-fuef

vulnerability	VCID-np94-ghhk-nug4

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fence-agents@4.10.0-62%3Farch=el9

106

url pkg:rpm/redhat/python3x-pycryptodomex@3.20.0-1?arch=el8ap

purl pkg:rpm/redhat/python3x-pycryptodomex@3.20.0-1?arch=el8ap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3x-pycryptodomex@3.20.0-1%3Farch=el8ap

107

url pkg:rpm/redhat/python-pycryptodomex@3.20.0-1?arch=el9ap

purl pkg:rpm/redhat/python-pycryptodomex@3.20.0-1?arch=el9ap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-pycryptodomex@3.20.0-1%3Farch=el9ap

108

url pkg:rpm/redhat/python-pycryptodomex@3.20.0-1?arch=el8pc

purl pkg:rpm/redhat/python-pycryptodomex@3.20.0-1?arch=el8pc

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-pycryptodomex@3.20.0-1%3Farch=el8pc

109

url pkg:rpm/redhat/resource-agents@4.9.0-54?arch=el8

purl pkg:rpm/redhat/resource-agents@4.9.0-54?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4evk-srqq-fuef

vulnerability	VCID-xyku-dd6j-u3ex

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/resource-agents@4.9.0-54%3Farch=el8

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52323.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52323.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-52323

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22385
published_at	2026-04-21T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22436
published_at	2026-04-18T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22439
published_at	2026-04-16T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22421
published_at	2026-04-13T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22476
published_at	2026-04-12T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22517
published_at	2026-04-11T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22498
published_at	2026-04-09T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22443
published_at	2026-04-08T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22362
published_at	2026-04-07T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22531
published_at	2026-04-02T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22573
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-52323

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52323
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52323

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/Legrandin/pycryptodome

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/Legrandin/pycryptodome

reference_url

https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:36:55Z/

url

https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst

reference_url

https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/Legrandin/pycryptodome/commit/0deea1bfe1489e8c80d2053bbb06a1aa0b181ebd

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/pycryptodomex/PYSEC-2024-3.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/pycryptodomex/PYSEC-2024-3.yaml

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-52323

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-52323

reference_url

https://pypi.org/project/pycryptodomex/#history

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

value	7.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:36:55Z/

url

https://pypi.org/project/pycryptodomex/#history

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1060059
reference_id	1060059
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1060059

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2257028
reference_id	2257028
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2257028

reference_url

https://github.com/advisories/GHSA-j225-cvw7-qrx7

reference_id

GHSA-j225-cvw7-qrx7

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-j225-cvw7-qrx7

reference_url	https://access.redhat.com/errata/RHSA-2024:1057
reference_id	RHSA-2024:1057
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1057

reference_url	https://access.redhat.com/errata/RHSA-2024:1155
reference_id	RHSA-2024:1155
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1155

reference_url	https://access.redhat.com/errata/RHSA-2024:2132
reference_id	RHSA-2024:2132
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2132

reference_url	https://access.redhat.com/errata/RHSA-2024:2952
reference_id	RHSA-2024:2952
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2952

reference_url	https://access.redhat.com/errata/RHSA-2024:2968
reference_id	RHSA-2024:2968
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2968

reference_url	https://usn.ubuntu.com/6595-1/
reference_id	USN-6595-1
reference_type
scores
url	https://usn.ubuntu.com/6595-1/

Weaknesses

cwe_id	203
name	Observable Discrepancy
description	The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 5.3 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xyku-dd6j-u3ex

Vulnerability Instance