Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-z6hn-789k-dbgj
SummaryThe Legion of the Bouncy Castle Java Cryptography API before release 1.38, as used in Crypto Provider Package before 1.36, has unknown impact and remote attack vectors related to "a Bleichenbacher vulnerability in simple RSA CMS signatures without signed attributes."
Aliases
0
alias CVE-2007-6721
1
alias GHSA-m26p-m559-g5j5
Fixed_packages
0
url pkg:deb/debian/bouncycastle@1.38-1?distro=trixie
purl pkg:deb/debian/bouncycastle@1.38-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.38-1%3Fdistro=trixie
1
url pkg:deb/debian/bouncycastle@1.39-2
purl pkg:deb/debian/bouncycastle@1.39-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2pjq-5np3-buhj
1
vulnerability VCID-5pwz-mdv3-dkak
2
vulnerability VCID-64mt-9155-tkbv
3
vulnerability VCID-72cc-rqu5-hub5
4
vulnerability VCID-ah8x-azmn-zbgq
5
vulnerability VCID-bf8c-jrdf-mfaw
6
vulnerability VCID-cjnx-86t9-uufs
7
vulnerability VCID-cnvy-kp5d-pkes
8
vulnerability VCID-crd1-k1qv-jkec
9
vulnerability VCID-gf2f-22xn-z7fq
10
vulnerability VCID-hkej-a1pn-2kh3
11
vulnerability VCID-k31z-bskx-uuc9
12
vulnerability VCID-q8ux-tmpf-sue2
13
vulnerability VCID-qap8-a94t-3yac
14
vulnerability VCID-qe69-rd9d-4kgg
15
vulnerability VCID-rh2m-yftg-7uc9
16
vulnerability VCID-sxxg-bjnq-2kf7
17
vulnerability VCID-txmh-5548-ckdg
18
vulnerability VCID-umbv-yqxu-cubb
19
vulnerability VCID-ut6k-7z6d-zqh1
20
vulnerability VCID-v4g4-vznr-zuhp
21
vulnerability VCID-zkjk-uddk-9qem
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.39-2
2
url pkg:deb/debian/bouncycastle@1.68-2?distro=trixie
purl pkg:deb/debian/bouncycastle@1.68-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7jw5-6bfa-u7a4
1
vulnerability VCID-98ws-cchw-a3fe
2
vulnerability VCID-c558-uvxv-8fdf
3
vulnerability VCID-cqfw-r4um-hyd6
4
vulnerability VCID-f47r-4t52-3bgq
5
vulnerability VCID-fdgv-77kb-ybat
6
vulnerability VCID-s4tz-g6jv-7ub4
7
vulnerability VCID-we5n-w376-tkda
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.68-2%3Fdistro=trixie
3
url pkg:deb/debian/bouncycastle@1.72-2?distro=trixie
purl pkg:deb/debian/bouncycastle@1.72-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7jw5-6bfa-u7a4
1
vulnerability VCID-98ws-cchw-a3fe
2
vulnerability VCID-c558-uvxv-8fdf
3
vulnerability VCID-cqfw-r4um-hyd6
4
vulnerability VCID-f47r-4t52-3bgq
5
vulnerability VCID-fdgv-77kb-ybat
6
vulnerability VCID-jt6u-jzrn-pkdt
7
vulnerability VCID-s4tz-g6jv-7ub4
8
vulnerability VCID-we5n-w376-tkda
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.72-2%3Fdistro=trixie
4
url pkg:deb/debian/bouncycastle@1.80-3?distro=trixie
purl pkg:deb/debian/bouncycastle@1.80-3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-jt6u-jzrn-pkdt
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.80-3%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/bouncycastle@1.33-4
purl pkg:deb/debian/bouncycastle@1.33-4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2pjq-5np3-buhj
1
vulnerability VCID-5pwz-mdv3-dkak
2
vulnerability VCID-64mt-9155-tkbv
3
vulnerability VCID-72cc-rqu5-hub5
4
vulnerability VCID-ah8x-azmn-zbgq
5
vulnerability VCID-bf8c-jrdf-mfaw
6
vulnerability VCID-cjnx-86t9-uufs
7
vulnerability VCID-cnvy-kp5d-pkes
8
vulnerability VCID-crd1-k1qv-jkec
9
vulnerability VCID-gf2f-22xn-z7fq
10
vulnerability VCID-hkej-a1pn-2kh3
11
vulnerability VCID-k31z-bskx-uuc9
12
vulnerability VCID-q8ux-tmpf-sue2
13
vulnerability VCID-qap8-a94t-3yac
14
vulnerability VCID-qe69-rd9d-4kgg
15
vulnerability VCID-rh2m-yftg-7uc9
16
vulnerability VCID-sxxg-bjnq-2kf7
17
vulnerability VCID-txmh-5548-ckdg
18
vulnerability VCID-umbv-yqxu-cubb
19
vulnerability VCID-ut6k-7z6d-zqh1
20
vulnerability VCID-v4g4-vznr-zuhp
21
vulnerability VCID-z6hn-789k-dbgj
22
vulnerability VCID-zkjk-uddk-9qem
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/bouncycastle@1.33-4
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6721.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6721.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2007-6721
reference_id
reference_type
scores
0
value 0.00856
scoring_system epss
scoring_elements 0.75334
published_at 2026-06-04T12:55:00Z
1
value 0.00856
scoring_system epss
scoring_elements 0.75363
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2007-6721
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6721
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6721
3
reference_url https://github.com/bcgit/bc-java
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/bcgit/bc-java
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2007-6721
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2007-6721
5
reference_url https://web.archive.org/web/20071022023551/http://www.bouncycastle.org/csharp
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20071022023551/http://www.bouncycastle.org/csharp
6
reference_url https://web.archive.org/web/20071022023551/http://www.bouncycastle.org/csharp/
reference_id
reference_type
scores
url https://web.archive.org/web/20071022023551/http://www.bouncycastle.org/csharp/
7
reference_url https://web.archive.org/web/20080316202318/http://www.bouncycastle.org:80/releasenotes.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20080316202318/http://www.bouncycastle.org:80/releasenotes.html
8
reference_url http://www.bouncycastle.org/devmailarchive/msg08195.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.bouncycastle.org/devmailarchive/msg08195.html
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=494053
reference_id 494053
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=494053
10
reference_url https://github.com/advisories/GHSA-m26p-m559-g5j5
reference_id GHSA-m26p-m559-g5j5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m26p-m559-g5j5
Weaknesses
0
cwe_id 203
name Observable Discrepancy
description The product behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which exposes security-relevant information about the state of the product, such as whether a particular operation was successful or not.
Exploits
Severity_range_score7.0 - 8.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-z6hn-789k-dbgj