Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-j51b-cm37-6fdj

Summary openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file

Aliases

alias	CVE-2025-11187

Fixed_packages

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:deb/debian/openssl@0?distro=trixie
purl	pkg:deb/debian/openssl@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie
purl	pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.4-1~deb13u2%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.5-1?distro=trixie
purl	pkg:deb/debian/openssl@3.5.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0?arch=6

purl pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0?arch=6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-chgr-9utt-kqbp

vulnerability	VCID-d4rs-rag3-cfcy

vulnerability	VCID-j51b-cm37-6fdj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0%3Farch=6

url pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1

purl pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3u2b-yumu-rkcd

vulnerability	VCID-6mua-rkdu-87ay

vulnerability	VCID-7xwq-vdej-ayg1

vulnerability	VCID-9b9g-yngp-7kd7

vulnerability	VCID-antn-nu5a-7yf6

vulnerability	VCID-chgr-9utt-kqbp

vulnerability	VCID-d4rs-rag3-cfcy

vulnerability	VCID-g8at-dasq-h3fb

vulnerability	VCID-j51b-cm37-6fdj

vulnerability	VCID-p7ca-uc7n-mfc4

vulnerability	VCID-rgue-at15-k7a2

vulnerability	VCID-w9yg-3dbq-8qge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el10_1

url pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7

purl pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3u2b-yumu-rkcd

vulnerability	VCID-6mua-rkdu-87ay

vulnerability	VCID-7xwq-vdej-ayg1

vulnerability	VCID-9b9g-yngp-7kd7

vulnerability	VCID-antn-nu5a-7yf6

vulnerability	VCID-chgr-9utt-kqbp

vulnerability	VCID-d4rs-rag3-cfcy

vulnerability	VCID-g8at-dasq-h3fb

vulnerability	VCID-j51b-cm37-6fdj

vulnerability	VCID-p7ca-uc7n-mfc4

vulnerability	VCID-rgue-at15-k7a2

vulnerability	VCID-w9yg-3dbq-8qge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el9_7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11187.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11187.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11187

reference_id

reference_type

scores

value	6e-05
scoring_system	epss
scoring_elements	0.00356
published_at	2026-04-04T12:55:00Z

value	6e-05
scoring_system	epss
scoring_elements	0.00354
published_at	2026-04-02T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.0048
published_at	2026-04-16T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.00488
published_at	2026-04-07T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.00486
published_at	2026-04-08T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.00484
published_at	2026-04-11T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.00481
published_at	2026-04-12T12:55:00Z

value	7e-05
scoring_system	epss
scoring_elements	0.00483
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11187

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://openssl-library.org/news/secadv/20260127.txt

reference_id

20260127.txt

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://openssl-library.org/news/secadv/20260127.txt

reference_url

https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206

reference_id

205e3a55e16e4bd08c12fdbd3416ab829c0f6206

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2430375
reference_id	2430375
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2430375

reference_url

https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8

reference_id

8caf359d6e46fb413e8f5f0df765d2e8a51df4e8

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8

reference_url

https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e

reference_id

e1079bc17ed93ff16f6b86f33a2fe3336e78817e

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e

reference_url	https://access.redhat.com/errata/RHSA-2026:1472
reference_id	RHSA-2026:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1472

reference_url	https://access.redhat.com/errata/RHSA-2026:1473
reference_id	RHSA-2026:1473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1473

reference_url	https://access.redhat.com/errata/RHSA-2026:1496
reference_id	RHSA-2026:1496
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1496

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:2485
reference_id	RHSA-2026:2485
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2485

reference_url	https://access.redhat.com/errata/RHSA-2026:2563
reference_id	RHSA-2026:2563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2563

reference_url	https://access.redhat.com/errata/RHSA-2026:3228
reference_id	RHSA-2026:3228
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3228

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://usn.ubuntu.com/7980-1/
reference_id	USN-7980-1
reference_type
scores
url	https://usn.ubuntu.com/7980-1/

Weaknesses

cwe_id	233
name	Improper Handling of Parameters
description	The product does not properly handle when the expected number of parameters, fields, or arguments is not provided in input, or if those parameters are undefined.

cwe_id	476
name	NULL Pointer Dereference
description	A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

Exploits

Severity_range_score 6.1 - 7.5

Exploitability 0.5

Weighted_severity 5.5

Risk_score 2.8

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j51b-cm37-6fdj

Vulnerability Instance