Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-jcyf-gcxb-7ucj

Summary CyaSSL does not check the key usage extension in leaf certificates, which allows remote attackers to spoof servers via a crafted server certificate not authorized for use in an SSL/TLS handshake.

Aliases

alias	CVE-2014-2903

Fixed_packages

url	pkg:deb/debian/wolfssl@3.4.8%2Bdfsg-1?distro=trixie
purl	pkg:deb/debian/wolfssl@3.4.8%2Bdfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@3.4.8%252Bdfsg-1%3Fdistro=trixie

url pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1u3q-52yd-1bhe

vulnerability	VCID-24s5-d6jt-4kfe

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-47nm-nte5-27fm

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6n4g-us9a-53g4

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-7xbp-qkvv-bqgm

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9hdy-aqa2-w3bd

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cum2-vp1j-syfc

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-dpu2-4w42-kygw

vulnerability	VCID-euma-vgqx-sbau

vulnerability	VCID-f4gq-hqcp-dqe2

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-su8x-6n42-n3d5

vulnerability	VCID-u24a-2khf-uyba

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xfgd-4hs3-vygk

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

vulnerability	VCID-zhf4-y8v8-gubn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@4.6.0%252Bp1-0%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2?distro=trixie

purl pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1u3q-52yd-1bhe

vulnerability	VCID-24s5-d6jt-4kfe

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-47nm-nte5-27fm

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-7xbp-qkvv-bqgm

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9hdy-aqa2-w3bd

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-dpu2-4w42-kygw

vulnerability	VCID-euma-vgqx-sbau

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-su8x-6n42-n3d5

vulnerability	VCID-u24a-2khf-uyba

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xfgd-4hs3-vygk

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

vulnerability	VCID-zhf4-y8v8-gubn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.5.4-2%252Bdeb12u2%3Fdistro=trixie

url pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.7.2-0.1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wolfssl@5.9.0-0.2?distro=trixie
purl	pkg:deb/debian/wolfssl@5.9.0-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.9.0-0.2%3Fdistro=trixie

Affected_packages

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-2903

reference_id

reference_type

scores

value	0.00213
scoring_system	epss
scoring_elements	0.43921
published_at	2026-04-16T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43859
published_at	2026-04-13T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43839
published_at	2026-04-01T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43883
published_at	2026-04-02T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43906
published_at	2026-04-04T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43837
published_at	2026-04-07T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43887
published_at	2026-04-08T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.4389
published_at	2026-04-09T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43908
published_at	2026-04-11T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43875
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-2903

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2903
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2903

reference_url	http://secunia.com/advisories/62604
reference_id
reference_type
scores
url	http://secunia.com/advisories/62604

reference_url	http://www.openwall.com/lists/oss-security/2014/04/18/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2014/04/18/2

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wolfssl:wolfssl::::::::
reference_id	cpe:2.3:a:wolfssl:wolfssl::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wolfssl:wolfssl::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-2903

reference_id

CVE-2014-2903

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:N

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2014-2903

Weaknesses

cwe_id	310
name	Cryptographic Issues
description	Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.

Exploits

Severity_range_score 4.3 - 5.9

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jcyf-gcxb-7ucj

Vulnerability Instance