Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-8hug-fhhb-sbgt
Summarypython: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used
Aliases
0
alias CVE-2024-5642
Fixed_packages
0
url pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/pypy3@7.3.10%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.10%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3
purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hw3-vhwb-nkcd
1
vulnerability VCID-2v5u-2z4w-ffgx
2
vulnerability VCID-4afh-28ss-mudf
3
vulnerability VCID-757r-fs6p-qqdd
4
vulnerability VCID-7s7y-9bw5-m3ep
5
vulnerability VCID-8dtv-379a-wqfs
6
vulnerability VCID-8zdt-4q7m-t7ht
7
vulnerability VCID-9nvp-aus1-9yed
8
vulnerability VCID-9sms-mhht-n3aq
9
vulnerability VCID-dnv8-yrd6-c7cv
10
vulnerability VCID-e6sb-bh7v-9ugg
11
vulnerability VCID-emaw-jmek-9bcy
12
vulnerability VCID-q6g1-cjz3-77e4
13
vulnerability VCID-qwhz-912b-8kh5
14
vulnerability VCID-smck-sdx2-c7du
15
vulnerability VCID-v186-7sv1-ubej
16
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3
2
url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hw3-vhwb-nkcd
1
vulnerability VCID-2v5u-2z4w-ffgx
2
vulnerability VCID-4afh-28ss-mudf
3
vulnerability VCID-757r-fs6p-qqdd
4
vulnerability VCID-7s7y-9bw5-m3ep
5
vulnerability VCID-8dtv-379a-wqfs
6
vulnerability VCID-8zdt-4q7m-t7ht
7
vulnerability VCID-9nvp-aus1-9yed
8
vulnerability VCID-9sms-mhht-n3aq
9
vulnerability VCID-dnv8-yrd6-c7cv
10
vulnerability VCID-e6sb-bh7v-9ugg
11
vulnerability VCID-emaw-jmek-9bcy
12
vulnerability VCID-q6g1-cjz3-77e4
13
vulnerability VCID-qwhz-912b-8kh5
14
vulnerability VCID-smck-sdx2-c7du
15
vulnerability VCID-v186-7sv1-ubej
16
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3%3Fdistro=trixie
3
url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie
purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hw3-vhwb-nkcd
1
vulnerability VCID-4afh-28ss-mudf
2
vulnerability VCID-757r-fs6p-qqdd
3
vulnerability VCID-8dtv-379a-wqfs
4
vulnerability VCID-8zdt-4q7m-t7ht
5
vulnerability VCID-emaw-jmek-9bcy
6
vulnerability VCID-q6g1-cjz3-77e4
7
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2%3Fdistro=trixie
4
url pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie
purl pkg:deb/debian/pypy3@7.3.21%2Bdfsg-4?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8dtv-379a-wqfs
1
vulnerability VCID-emaw-jmek-9bcy
2
vulnerability VCID-znkr-fxtj-4uc7
3
vulnerability VCID-zxzn-25zt-ukct
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.21%252Bdfsg-4%3Fdistro=trixie
5
url pkg:deb/debian/python3.11@0?distro=bookworm
purl pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm
6
url pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm
7
url pkg:deb/debian/python3.13@0?distro=trixie
purl pkg:deb/debian/python3.13@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@0%3Fdistro=trixie
8
url pkg:deb/debian/python3.13@3.13.5-2?distro=trixie
purl pkg:deb/debian/python3.13@3.13.5-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1uk5-6yqb-dyb5
1
vulnerability VCID-8b19-pezx-6bcd
2
vulnerability VCID-8dtv-379a-wqfs
3
vulnerability VCID-94n7-6q4s-3udv
4
vulnerability VCID-bn83-d2qp-9bfy
5
vulnerability VCID-emaw-jmek-9bcy
6
vulnerability VCID-fcsb-dn49-47gy
7
vulnerability VCID-kn9b-2gxw-gqgx
8
vulnerability VCID-mtk7-qut6-syd8
9
vulnerability VCID-nqqc-u8d5-8qf6
10
vulnerability VCID-zh1r-7rzh-2bez
11
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.5-2%3Fdistro=trixie
9
url pkg:deb/debian/python3.13@3.13.12-1?distro=trixie
purl pkg:deb/debian/python3.13@3.13.12-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zxzn-25zt-ukct
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.13@3.13.12-1%3Fdistro=trixie
Affected_packages
0
url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie
purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2v5u-2z4w-ffgx
1
vulnerability VCID-8hug-fhhb-sbgt
2
vulnerability VCID-a8mv-mr3q-vygz
3
vulnerability VCID-bqp2-x383-xqfh
4
vulnerability VCID-qwhz-912b-8kh5
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2%3Fdistro=trixie
1
url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2
purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-29cz-9gkc-1bfx
1
vulnerability VCID-2shb-2cvn-dyd2
2
vulnerability VCID-2v5u-2z4w-ffgx
3
vulnerability VCID-4gsg-5e6s-63g4
4
vulnerability VCID-4z89-3tfk-pyge
5
vulnerability VCID-7ka5-7jrn-dber
6
vulnerability VCID-7s7y-9bw5-m3ep
7
vulnerability VCID-8hug-fhhb-sbgt
8
vulnerability VCID-9nvp-aus1-9yed
9
vulnerability VCID-9sms-mhht-n3aq
10
vulnerability VCID-a8mv-mr3q-vygz
11
vulnerability VCID-bqp2-x383-xqfh
12
vulnerability VCID-dexx-3ssz-nqfg
13
vulnerability VCID-e6rs-jwvu-jycd
14
vulnerability VCID-e6sb-bh7v-9ugg
15
vulnerability VCID-emaw-jmek-9bcy
16
vulnerability VCID-h7z2-vc14-nfhq
17
vulnerability VCID-js5p-py72-2kga
18
vulnerability VCID-qqh6-evfk-1fgy
19
vulnerability VCID-qwhz-912b-8kh5
20
vulnerability VCID-smck-sdx2-c7du
21
vulnerability VCID-tbuw-2msj-tqd9
22
vulnerability VCID-v186-7sv1-ubej
23
vulnerability VCID-vpwj-d49q-1uh8
24
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2
2
url pkg:rpm/redhat/python3.9@3.9.25-2?arch=el9_7
purl pkg:rpm/redhat/python3.9@3.9.25-2?arch=el9_7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-8hug-fhhb-sbgt
1
vulnerability VCID-emaw-jmek-9bcy
2
vulnerability VCID-fcsb-dn49-47gy
3
vulnerability VCID-znkr-fxtj-4uc7
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.25-2%3Farch=el9_7
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5642.json
reference_id
reference_type
scores
0
value 2.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5642.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-5642
reference_id
reference_type
scores
0
value 0.00161
scoring_system epss
scoring_elements 0.36944
published_at 2026-04-13T12:55:00Z
1
value 0.00161
scoring_system epss
scoring_elements 0.3697
published_at 2026-04-12T12:55:00Z
2
value 0.00161
scoring_system epss
scoring_elements 0.37004
published_at 2026-04-11T12:55:00Z
3
value 0.00161
scoring_system epss
scoring_elements 0.36996
published_at 2026-04-09T12:55:00Z
4
value 0.00187
scoring_system epss
scoring_elements 0.40497
published_at 2026-04-07T12:55:00Z
5
value 0.00187
scoring_system epss
scoring_elements 0.40548
published_at 2026-04-08T12:55:00Z
6
value 0.00192
scoring_system epss
scoring_elements 0.41186
published_at 2026-04-18T12:55:00Z
7
value 0.00192
scoring_system epss
scoring_elements 0.41184
published_at 2026-04-02T12:55:00Z
8
value 0.00192
scoring_system epss
scoring_elements 0.41214
published_at 2026-04-04T12:55:00Z
9
value 0.00192
scoring_system epss
scoring_elements 0.41215
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-5642
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5642
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5642
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/python/cpython/issues/121227
reference_id 121227
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://github.com/python/cpython/issues/121227
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2294682
reference_id 2294682
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2294682
6
reference_url https://github.com/python/cpython/pull/23014
reference_id 23014
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://github.com/python/cpython/pull/23014
7
reference_url https://github.com/python/cpython/commit/39258d3595300bc7b952854c915f63ae2d4b9c3e
reference_id 39258d3595300bc7b952854c915f63ae2d4b9c3e
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://github.com/python/cpython/commit/39258d3595300bc7b952854c915f63ae2d4b9c3e
8
reference_url http://www.openwall.com/lists/oss-security/2024/06/28/4
reference_id 4
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url http://www.openwall.com/lists/oss-security/2024/06/28/4
9
reference_url https://github.com/python/cpython/commit/a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31
reference_id a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://github.com/python/cpython/commit/a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31
10
reference_url https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html
reference_id cve-2024-5535-openssl-memory-safety.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html
11
reference_url https://security.netapp.com/advisory/ntap-20240726-0005/
reference_id ntap-20240726-0005
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://security.netapp.com/advisory/ntap-20240726-0005/
12
reference_url https://mail.python.org/archives/list/security-announce@python.org/thread/PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ/
reference_id PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/
url https://mail.python.org/archives/list/security-announce@python.org/thread/PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ/
13
reference_url https://access.redhat.com/errata/RHSA-2025:23342
reference_id RHSA-2025:23342
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23342
14
reference_url https://access.redhat.com/errata/RHSA-2025:23530
reference_id RHSA-2025:23530
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:23530
15
reference_url https://access.redhat.com/errata/RHSA-2026:0414
reference_id RHSA-2026:0414
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0414
16
reference_url https://access.redhat.com/errata/RHSA-2026:0685
reference_id RHSA-2026:0685
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0685
17
reference_url https://access.redhat.com/errata/RHSA-2026:1652
reference_id RHSA-2026:1652
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1652
Weaknesses
0
cwe_id 20
name Improper Input Validation
description The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Exploits
Severity_range_score2.7 - 6.5
Exploitability0.5
Weighted_severity5.9
Risk_score3.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-8hug-fhhb-sbgt