Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/18090?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18090?format=api", "vulnerability_id": "VCID-cp97-n8pp-mygh", "summary": "Improper Certificate Validation\nIf a TLS 1.3 client gets neither a PSK (pre shared key) extension nor a KSE (key share extension) when connecting to a malicious server, a default predictable buffer gets used for the IKM (Input Keying Material) value when generating the session master secret. Using a potentially known IKM value when generating the session master secret key compromises the key generated, allowing an eavesdropper to reconstruct it and potentially allowing access to or meddling with message contents in the session. This issue does not affect client validation of connected servers, nor expose private key information, but could result in an insecure TLS 1.3 session when not controlling both sides of the connection. wolfSSL recommends that TLS 1.3 client side users update the version of wolfSSL used.", "aliases": [ { "alias": "CVE-2023-3724" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/404454?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=aarch64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=aarch64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244127?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=aarch64&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=aarch64&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238931?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=aarch64&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=aarch64&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388282?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=aarch64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=aarch64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347445?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=aarch64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=aarch64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253205?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=aarch64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=aarch64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404455?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armhf&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armhf&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244128?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armhf&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armhf&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238932?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armhf&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armhf&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388283?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armhf&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armhf&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347446?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armhf&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armhf&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253206?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armhf&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armhf&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404456?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armv7&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armv7&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244129?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armv7&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armv7&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238933?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armv7&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armv7&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388284?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armv7&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armv7&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347447?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armv7&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armv7&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253207?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=armv7&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=armv7&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404457?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=loongarch64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=loongarch64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388285?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=loongarch64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347448?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=loongarch64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=loongarch64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253208?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=loongarch64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404458?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=ppc64le&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=ppc64le&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244130?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=ppc64le&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=ppc64le&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238934?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=ppc64le&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=ppc64le&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388286?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=ppc64le&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=ppc64le&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347449?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=ppc64le&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=ppc64le&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253209?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=ppc64le&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404459?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=riscv64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=riscv64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238935?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=riscv64&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=riscv64&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388287?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=riscv64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=riscv64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347450?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=riscv64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=riscv64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253210?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=riscv64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=riscv64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404460?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=s390x&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=s390x&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244131?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=s390x&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=s390x&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238936?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=s390x&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=s390x&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388288?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=s390x&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=s390x&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347451?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=s390x&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=s390x&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253211?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=s390x&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=s390x&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404462?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86_64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86_64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244133?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86_64&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86_64&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238938?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86_64&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86_64&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388290?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86_64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86_64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347453?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86_64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86_64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253213?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86_64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86_64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/404461?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/244132?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86&distroversion=v3.18&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86&distroversion=v3.18&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/238937?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86&distroversion=v3.20&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86&distroversion=v3.20&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/388289?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/347452?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/253212?format=api", "purl": "pkg:apk/alpine/wolfssl@5.6.2-r0?arch=x86&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.2-r0%3Farch=x86&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/211679?format=api", "purl": "pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163b-w4h5-6bhe" }, { "vulnerability": "VCID-18n5-5y2z-bqg3" }, { "vulnerability": "VCID-1jw4-nex5-dubt" }, { "vulnerability": "VCID-1pfx-fagx-nkfb" }, { "vulnerability": "VCID-1ukz-4rek-j7ar" }, { "vulnerability": "VCID-2kbz-f7hv-6ygp" }, { "vulnerability": "VCID-2pag-edpn-9yf6" }, { "vulnerability": "VCID-2w4u-pxy2-vqa2" }, { "vulnerability": "VCID-3g75-wwdz-j3g3" }, { "vulnerability": "VCID-3g9e-66ca-syaz" }, { "vulnerability": "VCID-4232-84wr-w7dk" }, { "vulnerability": "VCID-4p5b-vx6a-r7fe" }, { "vulnerability": "VCID-4vhq-446b-7qcn" }, { "vulnerability": "VCID-552j-5txw-pbht" }, { "vulnerability": "VCID-6dqd-uu3e-x7f9" }, { "vulnerability": "VCID-726p-buqr-hkbe" }, { "vulnerability": "VCID-7kdn-1nkn-87bc" }, { "vulnerability": "VCID-8hmh-dnqv-9qax" }, { "vulnerability": "VCID-9at3-vrh2-8qfa" }, { "vulnerability": "VCID-a89h-exh1-mfaz" }, { "vulnerability": "VCID-b9pe-dy82-47ac" }, { "vulnerability": "VCID-ckd6-ydk9-aug7" }, { "vulnerability": "VCID-d4xr-keqa-hqb6" }, { "vulnerability": "VCID-ddhs-d1bt-sbcb" }, { "vulnerability": "VCID-dgqt-6g6t-zqfd" }, { "vulnerability": "VCID-ej91-sp8u-tket" }, { "vulnerability": "VCID-f6fm-2c3x-cqeb" }, { "vulnerability": "VCID-hpyn-runb-j3dp" }, { "vulnerability": "VCID-jdp3-p2xr-67h3" }, { "vulnerability": "VCID-jqu8-6nhj-uug8" }, { "vulnerability": "VCID-k4sk-ms12-efh1" }, { "vulnerability": "VCID-k8s7-srwr-b3da" }, { "vulnerability": "VCID-m6tu-xdbm-kqh9" }, { "vulnerability": "VCID-m7fe-7rpr-zyhp" }, { "vulnerability": "VCID-mcem-5wre-3ycs" }, { "vulnerability": "VCID-mvnf-dq5f-77cx" }, { "vulnerability": "VCID-pqg8-n4s1-s3cg" }, { "vulnerability": "VCID-qf3f-54r8-rqby" }, { "vulnerability": "VCID-r5zs-67xy-x3dm" }, { "vulnerability": "VCID-r9n5-6h1m-6qgy" }, { "vulnerability": "VCID-rjjp-fkht-d7ak" }, { "vulnerability": "VCID-sptp-ztwe-8ygk" }, { "vulnerability": "VCID-szu7-x9u6-cbga" }, { "vulnerability": "VCID-t525-5kgg-9qhs" }, { "vulnerability": "VCID-tcwh-5fpv-mfbx" }, { "vulnerability": "VCID-tqcq-pqvs-6ba2" }, { "vulnerability": "VCID-u282-e99w-wkgz" }, { "vulnerability": "VCID-v65x-dmqd-x7g6" }, { "vulnerability": "VCID-v7ep-p9as-aqaf" }, { "vulnerability": "VCID-vxtk-y737-47g8" }, { "vulnerability": "VCID-x2xe-7xr7-4ygq" }, { "vulnerability": "VCID-xh3g-aegw-jqd7" }, { "vulnerability": "VCID-xnvw-82g5-2yev" }, { "vulnerability": "VCID-yevh-9fkq-9qgx" }, { "vulnerability": "VCID-ywkt-c7dx-rkf9" }, { "vulnerability": "VCID-z1vh-4ac2-9bgn" }, { "vulnerability": "VCID-z268-cbaj-4qa2" }, { "vulnerability": "VCID-z68c-e93v-63h4" }, { "vulnerability": "VCID-zmm2-gwsa-tfe5" }, { "vulnerability": "VCID-zng5-c5t5-nfb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@4.6.0%252Bp1-0%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/211702?format=api", "purl": "pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.5.4-2%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/211677?format=api", "purl": "pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163b-w4h5-6bhe" }, { "vulnerability": "VCID-18n5-5y2z-bqg3" }, { "vulnerability": "VCID-1jw4-nex5-dubt" }, { "vulnerability": "VCID-1pfx-fagx-nkfb" }, { "vulnerability": "VCID-1ukz-4rek-j7ar" }, { "vulnerability": "VCID-2kbz-f7hv-6ygp" }, { "vulnerability": "VCID-2pag-edpn-9yf6" }, { "vulnerability": "VCID-2w4u-pxy2-vqa2" }, { "vulnerability": "VCID-3g75-wwdz-j3g3" }, { "vulnerability": "VCID-3g9e-66ca-syaz" }, { "vulnerability": "VCID-4232-84wr-w7dk" }, { "vulnerability": "VCID-4p5b-vx6a-r7fe" }, { "vulnerability": "VCID-4vhq-446b-7qcn" }, { "vulnerability": "VCID-552j-5txw-pbht" }, { "vulnerability": "VCID-6dqd-uu3e-x7f9" }, { "vulnerability": "VCID-726p-buqr-hkbe" }, { "vulnerability": "VCID-7kdn-1nkn-87bc" }, { "vulnerability": "VCID-8hmh-dnqv-9qax" }, { "vulnerability": "VCID-9at3-vrh2-8qfa" }, { "vulnerability": "VCID-a89h-exh1-mfaz" }, { "vulnerability": "VCID-b9pe-dy82-47ac" }, { "vulnerability": "VCID-ckd6-ydk9-aug7" }, { "vulnerability": "VCID-d4xr-keqa-hqb6" }, { "vulnerability": "VCID-ddhs-d1bt-sbcb" }, { "vulnerability": "VCID-dgqt-6g6t-zqfd" }, { "vulnerability": "VCID-ej91-sp8u-tket" }, { "vulnerability": "VCID-f6fm-2c3x-cqeb" }, { "vulnerability": "VCID-hpyn-runb-j3dp" }, { "vulnerability": "VCID-jqu8-6nhj-uug8" }, { "vulnerability": "VCID-k4sk-ms12-efh1" }, { "vulnerability": "VCID-k8s7-srwr-b3da" }, { "vulnerability": "VCID-m6tu-xdbm-kqh9" }, { "vulnerability": "VCID-m7fe-7rpr-zyhp" }, { "vulnerability": "VCID-mcem-5wre-3ycs" }, { "vulnerability": "VCID-mvnf-dq5f-77cx" }, { "vulnerability": "VCID-pqg8-n4s1-s3cg" }, { "vulnerability": "VCID-qf3f-54r8-rqby" }, { "vulnerability": "VCID-r5zs-67xy-x3dm" }, { "vulnerability": "VCID-r9n5-6h1m-6qgy" }, { "vulnerability": "VCID-rjjp-fkht-d7ak" }, { "vulnerability": "VCID-sptp-ztwe-8ygk" }, { "vulnerability": "VCID-szu7-x9u6-cbga" }, { "vulnerability": "VCID-t525-5kgg-9qhs" }, { "vulnerability": "VCID-tcwh-5fpv-mfbx" }, { "vulnerability": "VCID-tqcq-pqvs-6ba2" }, { "vulnerability": "VCID-u282-e99w-wkgz" }, { "vulnerability": "VCID-v65x-dmqd-x7g6" }, { "vulnerability": "VCID-v7ep-p9as-aqaf" }, { "vulnerability": "VCID-vxtk-y737-47g8" }, { "vulnerability": "VCID-xh3g-aegw-jqd7" }, { "vulnerability": "VCID-xnvw-82g5-2yev" }, { "vulnerability": "VCID-yevh-9fkq-9qgx" }, { "vulnerability": "VCID-ywkt-c7dx-rkf9" }, { "vulnerability": "VCID-z1vh-4ac2-9bgn" }, { "vulnerability": "VCID-z268-cbaj-4qa2" }, { "vulnerability": "VCID-z68c-e93v-63h4" }, { "vulnerability": "VCID-zng5-c5t5-nfb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.5.4-2%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/211703?format=api", "purl": "pkg:deb/debian/wolfssl@5.5.4-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.5.4-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/211681?format=api", "purl": "pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-163b-w4h5-6bhe" }, { "vulnerability": "VCID-18n5-5y2z-bqg3" }, { "vulnerability": "VCID-1jw4-nex5-dubt" }, { "vulnerability": "VCID-1pfx-fagx-nkfb" }, { "vulnerability": "VCID-1ukz-4rek-j7ar" }, { "vulnerability": "VCID-2kbz-f7hv-6ygp" }, { "vulnerability": "VCID-2pag-edpn-9yf6" }, { "vulnerability": "VCID-2w4u-pxy2-vqa2" }, { "vulnerability": "VCID-3g75-wwdz-j3g3" }, { "vulnerability": "VCID-3g9e-66ca-syaz" }, { "vulnerability": "VCID-4p5b-vx6a-r7fe" }, { "vulnerability": "VCID-4vhq-446b-7qcn" }, { "vulnerability": "VCID-552j-5txw-pbht" }, { "vulnerability": "VCID-6dqd-uu3e-x7f9" }, { "vulnerability": "VCID-726p-buqr-hkbe" }, { "vulnerability": "VCID-8hmh-dnqv-9qax" }, { "vulnerability": "VCID-9at3-vrh2-8qfa" }, { "vulnerability": "VCID-a89h-exh1-mfaz" }, { "vulnerability": "VCID-b9pe-dy82-47ac" }, { "vulnerability": "VCID-ckd6-ydk9-aug7" }, { "vulnerability": "VCID-d4xr-keqa-hqb6" }, { "vulnerability": "VCID-ddhs-d1bt-sbcb" }, { "vulnerability": "VCID-dgqt-6g6t-zqfd" }, { "vulnerability": "VCID-ej91-sp8u-tket" }, { "vulnerability": "VCID-f6fm-2c3x-cqeb" }, { "vulnerability": "VCID-k4sk-ms12-efh1" }, { "vulnerability": "VCID-k8s7-srwr-b3da" }, { "vulnerability": "VCID-mcem-5wre-3ycs" }, { "vulnerability": "VCID-qf3f-54r8-rqby" }, { "vulnerability": "VCID-r5zs-67xy-x3dm" }, { "vulnerability": "VCID-r9n5-6h1m-6qgy" }, { "vulnerability": "VCID-rjjp-fkht-d7ak" }, { "vulnerability": "VCID-szu7-x9u6-cbga" }, { "vulnerability": "VCID-tcwh-5fpv-mfbx" }, { "vulnerability": "VCID-tqcq-pqvs-6ba2" }, { "vulnerability": "VCID-u282-e99w-wkgz" }, { "vulnerability": "VCID-v65x-dmqd-x7g6" }, { "vulnerability": "VCID-v7ep-p9as-aqaf" }, { "vulnerability": "VCID-vxtk-y737-47g8" }, { "vulnerability": "VCID-xh3g-aegw-jqd7" }, { "vulnerability": "VCID-xnvw-82g5-2yev" }, { "vulnerability": "VCID-yevh-9fkq-9qgx" }, { "vulnerability": "VCID-ywkt-c7dx-rkf9" }, { "vulnerability": "VCID-z1vh-4ac2-9bgn" }, { "vulnerability": "VCID-z268-cbaj-4qa2" }, { "vulnerability": "VCID-zng5-c5t5-nfb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.7.2-0.1%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/211680?format=api", "purl": "pkg:deb/debian/wolfssl@5.9.1-0.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.9.1-0.1%3Fdistro=trixie" } ], "affected_packages": [], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3724", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00143", "scoring_system": "epss", "scoring_elements": "0.34359", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3724" }, { "reference_url": "https://github.com/wolfSSL/wolfssl/pull/6412", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-29T15:53:34Z/" } ], "url": "https://github.com/wolfSSL/wolfssl/pull/6412" }, { "reference_url": "https://www.wolfssl.com/docs/security-vulnerabilities/", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-29T15:53:34Z/" } ], "url": "https://www.wolfssl.com/docs/security-vulnerabilities/" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041699", "reference_id": "1041699", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041699" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3724", "reference_id": "CVE-2023-3724", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3724" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 295, "name": "Improper Certificate Validation", "description": "The product does not validate, or incorrectly validates, a certificate." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." } ], "exploits": [], "severity_range_score": "9.1 - 9.1", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cp97-n8pp-mygh" }