Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-u24a-2khf-uyba

Summary wolfSSL prior to 5.6.6 did not check that messages in one (D)TLS record do not span key boundaries. As a result, it was possible to combine (D)TLS messages using different keys into one (D)TLS record. The most extreme edge case is that, in (D)TLS 1.3, it was possible that an unencrypted (D)TLS 1.3 record from the server containing first a ServerHello message and then the rest of the first server flight would be accepted by a wolfSSL client. In (D)TLS 1.3 the handshake is encrypted after the ServerHello but a wolfSSL client would accept an unencrypted flight from the server. This does not compromise key negotiation and authentication so it is assigned a low severity rating.

Aliases

alias	CVE-2023-6937

Fixed_packages

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=aarch64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armhf&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armv7&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=riscv64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=s390x&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.23&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.23&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86_64&distroversion=v3.23&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=aarch64&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armhf&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armv7&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=ppc64le&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=riscv64&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=s390x&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.20&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.20&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86_64&distroversion=v3.20&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=aarch64&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armhf&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armv7&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=loongarch64&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=ppc64le&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=riscv64&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=s390x&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=edge&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=edge&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86_64&distroversion=edge&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=aarch64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armhf&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armv7&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=ppc64le&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=riscv64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=s390x&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86_64&distroversion=v3.21&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=aarch64&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armhf&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armv7&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=ppc64le&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=s390x&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.19&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.19&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86_64&distroversion=v3.19&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armhf&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armhf&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=armv7&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=armv7&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=loongarch64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=loongarch64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=ppc64le&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=ppc64le&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=riscv64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=riscv64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=s390x&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=s390x&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=x86_64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=x86_64&distroversion=v3.22&reponame=community

url	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.22&reponame=community
purl	pkg:apk/alpine/wolfssl@5.6.6-r0?arch=aarch64&distroversion=v3.22&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/wolfssl@5.6.6-r0%3Farch=aarch64&distroversion=v3.22&reponame=community

url	pkg:deb/debian/wolfssl@5.6.6-1.2?distro=trixie
purl	pkg:deb/debian/wolfssl@5.6.6-1.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.6.6-1.2%3Fdistro=trixie

url pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.7.2-0.1%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1

purl pkg:deb/debian/wolfssl@5.7.2-0.1%2Bdeb13u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.7.2-0.1%252Bdeb13u1

url	pkg:deb/debian/wolfssl@5.9.0-0.2?distro=trixie
purl	pkg:deb/debian/wolfssl@5.9.0-0.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.9.0-0.2%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2

purl pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1u3q-52yd-1bhe

vulnerability	VCID-24s5-d6jt-4kfe

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-47nm-nte5-27fm

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6n4g-us9a-53g4

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-7xbp-qkvv-bqgm

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9hdy-aqa2-w3bd

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cum2-vp1j-syfc

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-dpu2-4w42-kygw

vulnerability	VCID-euma-vgqx-sbau

vulnerability	VCID-f4gq-hqcp-dqe2

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-su8x-6n42-n3d5

vulnerability	VCID-u24a-2khf-uyba

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xfgd-4hs3-vygk

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

vulnerability	VCID-zhf4-y8v8-gubn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@4.6.0%252Bp1-0%252Bdeb11u2

url pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/wolfssl@4.6.0%2Bp1-0%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1u3q-52yd-1bhe

vulnerability	VCID-24s5-d6jt-4kfe

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-47nm-nte5-27fm

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6n4g-us9a-53g4

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-7xbp-qkvv-bqgm

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9hdy-aqa2-w3bd

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cum2-vp1j-syfc

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-dpu2-4w42-kygw

vulnerability	VCID-euma-vgqx-sbau

vulnerability	VCID-f4gq-hqcp-dqe2

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-su8x-6n42-n3d5

vulnerability	VCID-u24a-2khf-uyba

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xfgd-4hs3-vygk

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

vulnerability	VCID-zhf4-y8v8-gubn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@4.6.0%252Bp1-0%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2

purl pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1u3q-52yd-1bhe

vulnerability	VCID-24s5-d6jt-4kfe

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-47nm-nte5-27fm

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-7xbp-qkvv-bqgm

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9hdy-aqa2-w3bd

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-dpu2-4w42-kygw

vulnerability	VCID-euma-vgqx-sbau

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-su8x-6n42-n3d5

vulnerability	VCID-u24a-2khf-uyba

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xfgd-4hs3-vygk

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

vulnerability	VCID-zhf4-y8v8-gubn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.5.4-2%252Bdeb12u2

url pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2?distro=trixie

purl pkg:deb/debian/wolfssl@5.5.4-2%2Bdeb12u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1u3q-52yd-1bhe

vulnerability	VCID-24s5-d6jt-4kfe

vulnerability	VCID-2ry7-trrg-gfdk

vulnerability	VCID-47nm-nte5-27fm

vulnerability	VCID-4zda-zrq6-hbc8

vulnerability	VCID-6v8z-cfax-zqbh

vulnerability	VCID-7xbp-qkvv-bqgm

vulnerability	VCID-8735-ectc-j7a3

vulnerability	VCID-9hdy-aqa2-w3bd

vulnerability	VCID-9jpj-dfsf-qkce

vulnerability	VCID-9jw2-3v9v-ruap

vulnerability	VCID-9kev-ferz-5bhr

vulnerability	VCID-9x14-2t7m-1kbm

vulnerability	VCID-cxhw-3w24-dkes

vulnerability	VCID-dpu2-4w42-kygw

vulnerability	VCID-euma-vgqx-sbau

vulnerability	VCID-f57c-kamk-3bct

vulnerability	VCID-fmtp-x6y7-83g1

vulnerability	VCID-gcfd-w8je-kqfm

vulnerability	VCID-gdur-h588-vbb6

vulnerability	VCID-gmdj-a1ys-tqc2

vulnerability	VCID-h6na-nxxq-5yg9

vulnerability	VCID-hk8r-kk4v-1fa7

vulnerability	VCID-jxf4-y1au-5bhw

vulnerability	VCID-khur-3ax7-9fhb

vulnerability	VCID-n64w-nq6a-m7bv

vulnerability	VCID-njbj-f91t-b7f4

vulnerability	VCID-su8x-6n42-n3d5

vulnerability	VCID-u24a-2khf-uyba

vulnerability	VCID-uvht-9bt9-hfbb

vulnerability	VCID-v3m6-zajw-bfhb

vulnerability	VCID-xfgd-4hs3-vygk

vulnerability	VCID-xuyn-pjpb-g7du

vulnerability	VCID-xxkx-w5pc-5uap

vulnerability	VCID-zhf4-y8v8-gubn

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wolfssl@5.5.4-2%252Bdeb12u2%3Fdistro=trixie

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-6937

reference_id

reference_type

scores

value	0.00442
scoring_system	epss
scoring_elements	0.63285
published_at	2026-04-16T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63283
published_at	2026-04-09T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.633
published_at	2026-04-11T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63284
published_at	2026-04-12T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63219
published_at	2026-04-02T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63248
published_at	2026-04-13T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63214
published_at	2026-04-07T12:55:00Z

value	0.00442
scoring_system	epss
scoring_elements	0.63265
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-6937

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6937
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6937

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059357
reference_id	1059357
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059357

reference_url

https://github.com/wolfSSL/wolfssl/pull/7029

reference_id

7029

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-24T15:13:21Z/

url

https://github.com/wolfSSL/wolfssl/pull/7029

Weaknesses

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

Severity_range_score 5.3 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u24a-2khf-uyba

Vulnerability Instance