Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/68063?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/68063?format=api", "vulnerability_id": "VCID-7s3j-r66h-1qa6", "summary": "openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file", "aliases": [ { "alias": "CVE-2025-11187" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/311774?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311775?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311776?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311777?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311778?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311779?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311780?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311781?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/311782?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.23&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325767?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325768?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325769?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325770?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325771?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325772?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325773?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325774?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/325775?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.22&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329373?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329374?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329375?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329376?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329377?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329378?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329379?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329380?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/329381?format=api", "purl": "pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=edge&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/121360?format=api", "purl": "pkg:deb/debian/openssl@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/121324?format=api", "purl": "pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2hzz-tqgz-tbew" }, { "vulnerability": "VCID-ey1a-gmtq-6yct" }, { "vulnerability": "VCID-rgbt-w2ev-cfgw" }, { "vulnerability": "VCID-utdy-jcq5-w7g6" }, { "vulnerability": "VCID-xdsu-j1e8-ducr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/121322?format=api", "purl": "pkg:deb/debian/openssl@3.0.20-1~deb12u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-rgbt-w2ev-cfgw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.20-1~deb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/121507?format=api", "purl": "pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.4-1~deb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/121506?format=api", "purl": "pkg:deb/debian/openssl@3.5.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/121327?format=api", "purl": "pkg:deb/debian/openssl@3.5.6-1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.6-1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/121326?format=api", "purl": "pkg:deb/debian/openssl@3.6.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/94705?format=api", "purl": "pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0?arch=6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7abj-3zsb-bfep" }, { "vulnerability": "VCID-7s3j-r66h-1qa6" }, { "vulnerability": "VCID-qkn4-eq5g-dqgz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0%3Farch=6" }, { "url": "http://public2.vulnerablecode.io/api/packages/94703?format=api", "purl": "pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5hck-s1fh-k3gf" }, { "vulnerability": "VCID-7abj-3zsb-bfep" }, { "vulnerability": "VCID-7s3j-r66h-1qa6" }, { "vulnerability": "VCID-a88x-8v5h-wbc8" }, { "vulnerability": "VCID-bbu1-667d-vqcb" }, { "vulnerability": "VCID-gu2w-8kc3-3kgn" }, { "vulnerability": "VCID-jca9-q4rc-4ub9" }, { "vulnerability": "VCID-qkn4-eq5g-dqgz" }, { "vulnerability": "VCID-r9en-es5m-t3gs" }, { "vulnerability": "VCID-v4en-se25-u7fu" }, { "vulnerability": "VCID-v6un-s51d-z3hq" }, { "vulnerability": "VCID-zhax-1919-2ygm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el9_7" }, { "url": "http://public2.vulnerablecode.io/api/packages/94706?format=api", "purl": "pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5hck-s1fh-k3gf" }, { "vulnerability": "VCID-7abj-3zsb-bfep" }, { "vulnerability": "VCID-7s3j-r66h-1qa6" }, { "vulnerability": "VCID-a88x-8v5h-wbc8" }, { "vulnerability": "VCID-bbu1-667d-vqcb" }, { "vulnerability": "VCID-gu2w-8kc3-3kgn" }, { "vulnerability": "VCID-jca9-q4rc-4ub9" }, { "vulnerability": "VCID-qkn4-eq5g-dqgz" }, { "vulnerability": "VCID-r9en-es5m-t3gs" }, { "vulnerability": "VCID-v4en-se25-u7fu" }, { "vulnerability": "VCID-v6un-s51d-z3hq" }, { "vulnerability": "VCID-zhax-1919-2ygm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el10_1" }, { "url": "http://public2.vulnerablecode.io/api/packages/90443?format=api", "purl": "pkg:rpm/redhat/openssl-main@3.5.6-0.1?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2hzz-tqgz-tbew" }, { "vulnerability": "VCID-2x2e-84kd-9qh5" }, { "vulnerability": "VCID-5hck-s1fh-k3gf" }, { "vulnerability": "VCID-6b26-x65d-xuek" }, { "vulnerability": "VCID-7abj-3zsb-bfep" }, { "vulnerability": "VCID-7s3j-r66h-1qa6" }, { "vulnerability": "VCID-a88x-8v5h-wbc8" }, { "vulnerability": "VCID-baea-9pn4-uyfr" }, { "vulnerability": "VCID-bbu1-667d-vqcb" }, { "vulnerability": "VCID-dhfk-e75c-cbhq" }, { "vulnerability": "VCID-ey1a-gmtq-6yct" }, { "vulnerability": "VCID-g6bf-h8uz-ruf2" }, { "vulnerability": "VCID-gu2w-8kc3-3kgn" }, { "vulnerability": "VCID-jca9-q4rc-4ub9" }, { "vulnerability": "VCID-qkn4-eq5g-dqgz" }, { "vulnerability": "VCID-r9en-es5m-t3gs" }, { "vulnerability": "VCID-stbx-fj4j-mqez" }, { "vulnerability": "VCID-ukgp-r747-zugp" }, { "vulnerability": "VCID-utdy-jcq5-w7g6" }, { "vulnerability": "VCID-v4en-se25-u7fu" }, { "vulnerability": "VCID-v6un-s51d-z3hq" }, { "vulnerability": "VCID-xdsu-j1e8-ducr" }, { "vulnerability": "VCID-zhax-1919-2ygm" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl-main@3.5.6-0.1%3Farch=hum1" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11187.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11187.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-11187", "reference_id": "", "reference_type": "", "scores": [ { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00771", "published_at": "2026-06-08T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00776", "published_at": "2026-06-05T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00779", "published_at": "2026-06-06T12:55:00Z" }, { "value": "8e-05", "scoring_system": "epss", "scoring_elements": "0.00777", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-11187" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://openssl-library.org/news/secadv/20260127.txt", "reference_id": "20260127.txt", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/" } ], "url": "https://openssl-library.org/news/secadv/20260127.txt" }, { "reference_url": "https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206", "reference_id": "205e3a55e16e4bd08c12fdbd3416ab829c0f6206", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/" } ], "url": "https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430375", "reference_id": "2430375", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430375" }, { "reference_url": "https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8", "reference_id": "8caf359d6e46fb413e8f5f0df765d2e8a51df4e8", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/" } ], "url": "https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8" }, { "reference_url": "https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e", "reference_id": "e1079bc17ed93ff16f6b86f33a2fe3336e78817e", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/" } ], "url": "https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1472", "reference_id": "RHSA-2026:1472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1473", "reference_id": "RHSA-2026:1473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1496", "reference_id": "RHSA-2026:1496", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1496" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:1736", "reference_id": "RHSA-2026:1736", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:1736" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:2485", "reference_id": "RHSA-2026:2485", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:2485" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:2563", "reference_id": "RHSA-2026:2563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:2563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:3228", "reference_id": "RHSA-2026:3228", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:3228" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4943", "reference_id": "RHSA-2026:4943", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4943" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7261", "reference_id": "RHSA-2026:7261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7261" }, { "reference_url": "https://usn.ubuntu.com/7980-1/", "reference_id": "USN-7980-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7980-1/" } ], "weaknesses": [ { "cwe_id": 233, "name": "Improper Handling of Parameters", "description": "The product does not properly handle when the expected number of parameters, fields, or arguments is not provided in input, or if those parameters are undefined." }, { "cwe_id": 476, "name": "NULL Pointer Dereference", "description": "A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit." }, { "cwe_id": 787, "name": "Out-of-bounds Write", "description": "The product writes data past the end, or before the beginning, of the intended buffer." } ], "exploits": [], "severity_range_score": "6.1 - 7.5", "exploitability": "0.5", "weighted_severity": "5.5", "risk_score": 2.8, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7s3j-r66h-1qa6" }