Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-37ce-hamd-wuda
Summary
Aliases
0
alias CVE-2026-5598
Fixed_packages
0
url pkg:deb/debian/bouncycastle@0?distro=trixie
purl pkg:deb/debian/bouncycastle@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@0%3Fdistro=trixie
1
url pkg:deb/debian/bouncycastle@1.68-2?distro=trixie
purl pkg:deb/debian/bouncycastle@1.68-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2j9r-6zbp-m3bz
1
vulnerability VCID-4rs8-tp92-p7ck
2
vulnerability VCID-abxq-7eq3-g7dp
3
vulnerability VCID-d5x5-hcjh-efcr
4
vulnerability VCID-e4j2-7rmt-17bf
5
vulnerability VCID-rary-mqyu-2yes
6
vulnerability VCID-sz15-payv-uyab
7
vulnerability VCID-wqgc-hd9r-zuek
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.68-2%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/bouncycastle@1.72-2
purl pkg:deb/debian/bouncycastle@1.72-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2j9r-6zbp-m3bz
1
vulnerability VCID-37ce-hamd-wuda
2
vulnerability VCID-4rs8-tp92-p7ck
3
vulnerability VCID-abxq-7eq3-g7dp
4
vulnerability VCID-d5x5-hcjh-efcr
5
vulnerability VCID-e4j2-7rmt-17bf
6
vulnerability VCID-rary-mqyu-2yes
7
vulnerability VCID-sz15-payv-uyab
8
vulnerability VCID-wqgc-hd9r-zuek
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.72-2
1
url pkg:deb/debian/bouncycastle@1.72-2?distro=trixie
purl pkg:deb/debian/bouncycastle@1.72-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2j9r-6zbp-m3bz
1
vulnerability VCID-37ce-hamd-wuda
2
vulnerability VCID-4rs8-tp92-p7ck
3
vulnerability VCID-abxq-7eq3-g7dp
4
vulnerability VCID-d5x5-hcjh-efcr
5
vulnerability VCID-e4j2-7rmt-17bf
6
vulnerability VCID-rary-mqyu-2yes
7
vulnerability VCID-sz15-payv-uyab
8
vulnerability VCID-wqgc-hd9r-zuek
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.72-2%3Fdistro=trixie
2
url pkg:deb/debian/bouncycastle@1.80-3?distro=trixie
purl pkg:deb/debian/bouncycastle@1.80-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-37ce-hamd-wuda
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.80-3%3Fdistro=trixie
3
url pkg:deb/debian/bouncycastle@1.80-3
purl pkg:deb/debian/bouncycastle@1.80-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-37ce-hamd-wuda
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.80-3
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5598.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-5598.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-5598
reference_id
reference_type
scores
0
value 0.00019
scoring_system epss
scoring_elements 0.05165
published_at 2026-04-21T12:55:00Z
1
value 0.00045
scoring_system epss
scoring_elements 0.13788
published_at 2026-04-16T12:55:00Z
2
value 0.00045
scoring_system epss
scoring_elements 0.13783
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-5598
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-5598
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134386
reference_id 1134386
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1134386
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2458635
reference_id 2458635
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2458635
6
reference_url https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905998
reference_id CVE%E2%80%902026%E2%80%905998
reference_type
scores
0
value 10
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2026-04-15T13:11:48Z/
url https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905998
Weaknesses
0
cwe_id 385
name Covert Timing Channel
description Covert timing channels convey information by modulating some aspect of system behavior over time, so that the program receiving the information can observe system behavior and infer protected information.
Exploits
Severity_range_score7.5 - 10.0
Exploitability0.5
Weighted_severity9.0
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-37ce-hamd-wuda