Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-8xnb-g7pw-y3cn
Summary
Aliases
0
alias CVE-2026-34582
Fixed_packages
0
url pkg:deb/debian/botan3@3.11.0%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/botan3@3.11.0%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.11.0%252Bdfsg-2%3Fdistro=trixie
1
url pkg:deb/debian/botan3@3.11.1%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/botan3@3.11.1%2Bdfsg-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.11.1%252Bdfsg-2%3Fdistro=trixie
2
url pkg:deb/debian/botan3@3.11.1%2Bdfsg-2
purl pkg:deb/debian/botan3@3.11.1%2Bdfsg-2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.11.1%252Bdfsg-2
Affected_packages
0
url pkg:deb/debian/botan3@3.7.1%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/botan3@3.7.1%2Bdfsg-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-53zr-h1xh-w3fg
1
vulnerability VCID-8xnb-g7pw-y3cn
2
vulnerability VCID-gw14-fx4m-qqag
3
vulnerability VCID-kyg3-jbf1-qyb1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.7.1%252Bdfsg-2%3Fdistro=trixie
1
url pkg:deb/debian/botan3@3.7.1%2Bdfsg-2
purl pkg:deb/debian/botan3@3.7.1%2Bdfsg-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-53zr-h1xh-w3fg
1
vulnerability VCID-8xnb-g7pw-y3cn
2
vulnerability VCID-gw14-fx4m-qqag
3
vulnerability VCID-kyg3-jbf1-qyb1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.7.1%252Bdfsg-2
2
url pkg:deb/debian/botan3@3.10.0%2Bdfsg-2
purl pkg:deb/debian/botan3@3.10.0%2Bdfsg-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-53zr-h1xh-w3fg
1
vulnerability VCID-8xnb-g7pw-y3cn
2
vulnerability VCID-gw14-fx4m-qqag
3
vulnerability VCID-kyg3-jbf1-qyb1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.10.0%252Bdfsg-2
3
url pkg:deb/debian/botan3@3.10.0%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/botan3@3.10.0%2Bdfsg-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-53zr-h1xh-w3fg
1
vulnerability VCID-8xnb-g7pw-y3cn
2
vulnerability VCID-gw14-fx4m-qqag
3
vulnerability VCID-kyg3-jbf1-qyb1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/botan3@3.10.0%252Bdfsg-2%3Fdistro=trixie
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34582.json
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34582.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-34582
reference_id
reference_type
scores
0
value 0.00028
scoring_system epss
scoring_elements 0.08135
published_at 2026-04-09T12:55:00Z
1
value 0.00028
scoring_system epss
scoring_elements 0.08113
published_at 2026-04-08T12:55:00Z
2
value 0.00028
scoring_system epss
scoring_elements 0.08107
published_at 2026-04-12T12:55:00Z
3
value 0.00028
scoring_system epss
scoring_elements 0.08126
published_at 2026-04-11T12:55:00Z
4
value 0.00029
scoring_system epss
scoring_elements 0.08211
published_at 2026-04-21T12:55:00Z
5
value 0.00029
scoring_system epss
scoring_elements 0.08053
published_at 2026-04-18T12:55:00Z
6
value 0.00034
scoring_system epss
scoring_elements 0.09891
published_at 2026-04-13T12:55:00Z
7
value 0.00034
scoring_system epss
scoring_elements 0.09774
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-34582
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34582
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34582
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 9.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2456285
reference_id 2456285
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2456285
5
reference_url https://github.com/randombit/botan/security/advisories/GHSA-pxcj-9ppx-g86g
reference_id GHSA-pxcj-9ppx-g86g
reference_type
scores
0
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-08T15:41:07Z/
url https://github.com/randombit/botan/security/advisories/GHSA-pxcj-9ppx-g86g
Weaknesses
0
cwe_id 166
name Improper Handling of Missing Special Element
description The product receives input from an upstream component, but it does not handle or incorrectly handles when an expected special element is missing.
1
cwe_id 841
name Improper Enforcement of Behavioral Workflow
description The product supports a session in which more than one behavior must be performed by an actor, but it does not properly ensure that the actor performs the behaviors in the required sequence.
Exploits
Severity_range_score8.7 - 9.1
Exploitability0.5
Weighted_severity8.2
Risk_score4.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-8xnb-g7pw-y3cn