Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-g8at-dasq-h3fb

Summary openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression

Aliases

alias	CVE-2025-66199

Fixed_packages

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=aarch64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=aarch64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=aarch64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=armhf&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=armhf&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=armhf&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86_64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86_64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=x86_64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=x86&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=armhf&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=armhf&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=armhf&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=loongarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=loongarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=loongarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=ppc64le&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=ppc64le&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=ppc64le&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=riscv64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=riscv64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=riscv64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=s390x&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=s390x&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=s390x&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86_64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86_64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=x86_64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=armv7&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=armv7&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=armv7&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=ppc64le&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=ppc64le&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=ppc64le&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=riscv64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=riscv64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=riscv64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=x86&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=x86&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=armv7&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=armv7&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=armv7&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=aarch64&distroversion=v3.21&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=aarch64&distroversion=v3.21&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=aarch64&distroversion=v3.21&reponame=main

url	pkg:apk/alpine/openssl@3.3.6-r0?arch=s390x&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/openssl@3.3.6-r0?arch=s390x&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.3.6-r0%3Farch=s390x&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:deb/debian/openssl@0?distro=trixie
purl	pkg:deb/debian/openssl@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-8gde-1md7-5yak

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.18-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8gde-1md7-5yak

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.18-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie
purl	pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.4-1~deb13u2%3Fdistro=trixie

url pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

purl pkg:deb/debian/openssl@3.5.5-1~deb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7f9q-mhsr-8bfq

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.5-1?distro=trixie
purl	pkg:deb/debian/openssl@3.5.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.6.1-3?distro=trixie

purl pkg:deb/debian/openssl@3.6.1-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-74wu-sup9-cybb

vulnerability	VCID-7f9q-mhsr-8bfq

vulnerability	VCID-87vs-4p6w-xbgq

vulnerability	VCID-cef8-2p5t-bff7

vulnerability	VCID-f2na-rtsu-ffad

vulnerability	VCID-hgvf-vxhr-cye8

vulnerability	VCID-wuwm-ksb1-6qd5

vulnerability	VCID-zkc9-huk8-27bc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.1-3%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1

purl pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3u2b-yumu-rkcd

vulnerability	VCID-6mua-rkdu-87ay

vulnerability	VCID-7xwq-vdej-ayg1

vulnerability	VCID-9b9g-yngp-7kd7

vulnerability	VCID-antn-nu5a-7yf6

vulnerability	VCID-chgr-9utt-kqbp

vulnerability	VCID-d4rs-rag3-cfcy

vulnerability	VCID-g8at-dasq-h3fb

vulnerability	VCID-j51b-cm37-6fdj

vulnerability	VCID-p7ca-uc7n-mfc4

vulnerability	VCID-rgue-at15-k7a2

vulnerability	VCID-w9yg-3dbq-8qge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el10_1

url pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7

purl pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3u2b-yumu-rkcd

vulnerability	VCID-6mua-rkdu-87ay

vulnerability	VCID-7xwq-vdej-ayg1

vulnerability	VCID-9b9g-yngp-7kd7

vulnerability	VCID-antn-nu5a-7yf6

vulnerability	VCID-chgr-9utt-kqbp

vulnerability	VCID-d4rs-rag3-cfcy

vulnerability	VCID-g8at-dasq-h3fb

vulnerability	VCID-j51b-cm37-6fdj

vulnerability	VCID-p7ca-uc7n-mfc4

vulnerability	VCID-rgue-at15-k7a2

vulnerability	VCID-w9yg-3dbq-8qge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el9_7

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-66199.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-66199.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-66199

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.20166
published_at	2026-04-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20107
published_at	2026-04-02T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.207
published_at	2026-04-16T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20649
published_at	2026-04-07T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20726
published_at	2026-04-08T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20786
published_at	2026-04-09T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20804
published_at	2026-04-11T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.20762
published_at	2026-04-12T12:55:00Z

value	0.00067
scoring_system	epss
scoring_elements	0.2071
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-66199

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://openssl-library.org/news/secadv/20260127.txt

reference_id

20260127.txt

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T15:03:12Z/

url

https://openssl-library.org/news/secadv/20260127.txt

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2430379
reference_id	2430379
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2430379

reference_url

https://github.com/openssl/openssl/commit/3ed1f75249932b155eef993a8e66a99cb98bfef4

reference_id

3ed1f75249932b155eef993a8e66a99cb98bfef4

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T15:03:12Z/

url

https://github.com/openssl/openssl/commit/3ed1f75249932b155eef993a8e66a99cb98bfef4

reference_url

https://github.com/openssl/openssl/commit/6184a4fb08ee6d7bca570d931a4e8bef40b64451

reference_id

6184a4fb08ee6d7bca570d931a4e8bef40b64451

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T15:03:12Z/

url

https://github.com/openssl/openssl/commit/6184a4fb08ee6d7bca570d931a4e8bef40b64451

reference_url

https://github.com/openssl/openssl/commit/895150b5e021d16b52fb32b97e1dd12f20448be5

reference_id

895150b5e021d16b52fb32b97e1dd12f20448be5

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T15:03:12Z/

url

https://github.com/openssl/openssl/commit/895150b5e021d16b52fb32b97e1dd12f20448be5

reference_url

https://github.com/openssl/openssl/commit/966a2478046c311ed7dae50c457d0db4cafbf7e4

reference_id

966a2478046c311ed7dae50c457d0db4cafbf7e4

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-29T15:03:12Z/

url

https://github.com/openssl/openssl/commit/966a2478046c311ed7dae50c457d0db4cafbf7e4

reference_url	https://access.redhat.com/errata/RHSA-2026:1472
reference_id	RHSA-2026:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1472

reference_url	https://access.redhat.com/errata/RHSA-2026:1473
reference_id	RHSA-2026:1473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1473

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:2485
reference_id	RHSA-2026:2485
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2485

reference_url	https://access.redhat.com/errata/RHSA-2026:2563
reference_id	RHSA-2026:2563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2563

reference_url	https://access.redhat.com/errata/RHSA-2026:3228
reference_id	RHSA-2026:3228
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3228

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://usn.ubuntu.com/7980-1/
reference_id	USN-7980-1
reference_type
scores
url	https://usn.ubuntu.com/7980-1/

Weaknesses

cwe_id	770
name	Allocation of Resources Without Limits or Throttling
description	The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

cwe_id	789
name	Memory Allocation with Excessive Size Value
description	The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.

Exploits

Severity_range_score 5.3 - 5.9

Exploitability 0.5

Weighted_severity 5.3

Risk_score 2.6

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g8at-dasq-h3fb

Vulnerability Instance