Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:apk/alpine/openssl@1.1.1j-r0?arch=x86&distroversion=v3.17&reponame=main
Typeapk
Namespacealpine
Nameopenssl
Version1.1.1j-r0
Qualifiers
arch x86
distroversion v3.17
reponame main
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version1.1.1k-r0
Latest_non_vulnerable_version3.0.19-r0
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-45ff-6mme-2ffg
vulnerability_id VCID-45ff-6mme-2ffg
summary OpenSSL 1.0.2 supports SSLv2. If a client attempts to negotiate SSLv2 with a server that is configured to support both SSLv2 and more recent SSL and TLS versions then a check is made for a version rollback attack when unpadding an RSA signature. Clients that support SSL or TLS versions greater than SSLv2 are supposed to use a special form of padding. A server that supports greater than SSLv2 is supposed to reject connection attempts from a client where this special form of padding is present, because this indicates that a version rollback has occurred (i.e. both client and server support greater than SSLv2, and yet this is the version that is being requested). The implementation of this padding check inverted the logic so that the connection attempt is accepted if the padding is present, and rejected if it is absent. This means that such as server will accept a connection if a version rollback attack has occurred. Further the server will erroneously reject a connection if a normal SSLv2 connection attempt is made. Only OpenSSL 1.0.2 servers from version 1.0.2s to 1.0.2x are affected by this issue. In order to be vulnerable a 1.0.2 server must: 1) have configured SSLv2 support at compile time (this is off by default), 2) have configured SSLv2 support at runtime (this is off by default), 3) have configured SSLv2 ciphersuites (these are not in the default ciphersuite list) OpenSSL 1.1.1 does not have SSLv2 support and therefore is not vulnerable to this issue. The underlying error is in the implementation of the RSA_padding_check_SSLv23() function. This also affects the RSA_SSLV23_PADDING padding mode used by various other functions. Although 1.1.1 does not support SSLv2 the RSA_padding_check_SSLv23() function still exists, as does the RSA_SSLV23_PADDING padding mode. Applications that directly call that function or use that padding mode will encounter this issue. However since there is no support for the SSLv2 protocol in 1.1.1 this is considered a bug and not a security issue in that version. OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.0.2y (Affected 1.0.2s-1.0.2x).
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23839.json
reference_id
reference_type
scores
0
value 3.7
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23839.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23839
reference_id
reference_type
scores
0
value 0.00292
scoring_system epss
scoring_elements 0.5296
published_at 2026-06-11T12:55:00Z
1
value 0.00292
scoring_system epss
scoring_elements 0.53088
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23839
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23839
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23839
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1930294
reference_id 1930294
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1930294
4
reference_url https://www.openssl.org/news/secadv/20210216.txt
reference_id 20210216.txt
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://www.openssl.org/news/secadv/20210216.txt
5
reference_url https://www.oracle.com/security-alerts/cpuApr2021.html
reference_id cpuApr2021.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://www.oracle.com/security-alerts/cpuApr2021.html
6
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id cpuapr2022.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://www.oracle.com/security-alerts/cpuapr2022.html
7
reference_url https://www.oracle.com//security-alerts/cpujul2021.html
reference_id cpujul2021.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://www.oracle.com//security-alerts/cpujul2021.html
8
reference_url https://www.oracle.com/security-alerts/cpuoct2021.html
reference_id cpuoct2021.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://www.oracle.com/security-alerts/cpuoct2021.html
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-23839
reference_id CVE-2021-23839
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2021-23839
10
reference_url https://security.netapp.com/advisory/ntap-20210219-0009/
reference_id ntap-20210219-0009
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://security.netapp.com/advisory/ntap-20210219-0009/
11
reference_url https://security.netapp.com/advisory/ntap-20240621-0006/
reference_id ntap-20240621-0006
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://security.netapp.com/advisory/ntap-20240621-0006/
12
reference_url https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=30919ab80a478f2d81f2e9acdcca3fa4740cd547
reference_id ?p=openssl.git%3Ba=commitdiff%3Bh=30919ab80a478f2d81f2e9acdcca3fa4740cd547
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=30919ab80a478f2d81f2e9acdcca3fa4740cd547
13
reference_url https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846
reference_id SA44846
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846
14
reference_url https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
reference_id ssa-637483.pdf
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-01T19:19:45Z/
url https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
fixed_packages
0
url pkg:apk/alpine/openssl@1.1.1j-r0?arch=x86&distroversion=v3.17&reponame=main
purl pkg:apk/alpine/openssl@1.1.1j-r0?arch=x86&distroversion=v3.17&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@1.1.1j-r0%3Farch=x86&distroversion=v3.17&reponame=main
aliases CVE-2021-23839
risk_score 1.6
exploitability 0.5
weighted_severity 3.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-45ff-6mme-2ffg
1
url VCID-qz6x-nrfe-zyfg
vulnerability_id VCID-qz6x-nrfe-zyfg
summary
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23841.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23841.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23841
reference_id
reference_type
scores
0
value 0.00958
scoring_system epss
scoring_elements 0.76957
published_at 2026-06-12T12:55:00Z
1
value 0.00958
scoring_system epss
scoring_elements 0.76887
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23841
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1551
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1551
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23840
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23840
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23841
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23841
5
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
6
reference_url https://github.com/alexcrichton/openssl-src-rs
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/alexcrichton/openssl-src-rs
7
reference_url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=122a19ab48091c657f7cb1fb3af9fc07bd557bbf
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=122a19ab48091c657f7cb1fb3af9fc07bd557bbf
8
reference_url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a51b9e1d0cf0bf8515f7201b68fb0a3482b3dc1
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a51b9e1d0cf0bf8515f7201b68fb0a3482b3dc1
9
reference_url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=8252ee4d90f3f2004d3d0aeeed003ad49c9a7807
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=8252ee4d90f3f2004d3d0aeeed003ad49c9a7807
10
reference_url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9b1129239f3ebb1d1c98ce9ed41d5c9476c47cb2
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9b1129239f3ebb1d1c98ce9ed41d5c9476c47cb2
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-23841
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-23841
12
reference_url https://rustsec.org/advisories/RUSTSEC-2021-0058
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rustsec.org/advisories/RUSTSEC-2021-0058
13
reference_url https://rustsec.org/advisories/RUSTSEC-2021-0058.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rustsec.org/advisories/RUSTSEC-2021-0058.html
14
reference_url https://security.netapp.com/advisory/ntap-20210219-0009
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210219-0009
15
reference_url https://security.netapp.com/advisory/ntap-20210513-0002
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20210513-0002
16
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1930310
reference_id 1930310
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1930310
17
reference_url https://www.openssl.org/news/secadv/20210216.txt
reference_id 20210216.txt
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.openssl.org/news/secadv/20210216.txt
18
reference_url https://security.gentoo.org/glsa/202103-03
reference_id 202103-03
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://security.gentoo.org/glsa/202103-03
19
reference_url http://seclists.org/fulldisclosure/2021/May/67
reference_id 67
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url http://seclists.org/fulldisclosure/2021/May/67
20
reference_url http://seclists.org/fulldisclosure/2021/May/68
reference_id 68
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url http://seclists.org/fulldisclosure/2021/May/68
21
reference_url http://seclists.org/fulldisclosure/2021/May/70
reference_id 70
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url http://seclists.org/fulldisclosure/2021/May/70
22
reference_url https://security.archlinux.org/ASA-202102-42
reference_id ASA-202102-42
reference_type
scores
url https://security.archlinux.org/ASA-202102-42
23
reference_url https://security.archlinux.org/AVG-1581
reference_id AVG-1581
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1581
24
reference_url https://www.oracle.com/security-alerts/cpuApr2021.html
reference_id cpuApr2021.html
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.oracle.com/security-alerts/cpuApr2021.html
25
reference_url https://www.oracle.com/security-alerts/cpuapr2022.html
reference_id cpuapr2022.html
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.oracle.com/security-alerts/cpuapr2022.html
26
reference_url https://www.oracle.com//security-alerts/cpujul2021.html
reference_id cpujul2021.html
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.oracle.com//security-alerts/cpujul2021.html
27
reference_url https://www.oracle.com/security-alerts/cpuoct2021.html
reference_id cpuoct2021.html
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.oracle.com/security-alerts/cpuoct2021.html
28
reference_url https://www.debian.org/security/2021/dsa-4855
reference_id dsa-4855
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.debian.org/security/2021/dsa-4855
29
reference_url https://github.com/advisories/GHSA-84rm-qf37-fgc2
reference_id GHSA-84rm-qf37-fgc2
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-84rm-qf37-fgc2
30
reference_url https://support.apple.com/kb/HT212528
reference_id HT212528
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://support.apple.com/kb/HT212528
31
reference_url https://support.apple.com/kb/HT212529
reference_id HT212529
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://support.apple.com/kb/HT212529
32
reference_url https://support.apple.com/kb/HT212534
reference_id HT212534
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://support.apple.com/kb/HT212534
33
reference_url https://security.netapp.com/advisory/ntap-20210219-0009/
reference_id ntap-20210219-0009
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://security.netapp.com/advisory/ntap-20210219-0009/
34
reference_url https://security.netapp.com/advisory/ntap-20210513-0002/
reference_id ntap-20210513-0002
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://security.netapp.com/advisory/ntap-20210513-0002/
35
reference_url https://security.netapp.com/advisory/ntap-20240621-0006/
reference_id ntap-20240621-0006
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://security.netapp.com/advisory/ntap-20240621-0006/
36
reference_url https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=122a19ab48091c657f7cb1fb3af9fc07bd557bbf
reference_id ?p=openssl.git%3Ba=commitdiff%3Bh=122a19ab48091c657f7cb1fb3af9fc07bd557bbf
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=122a19ab48091c657f7cb1fb3af9fc07bd557bbf
37
reference_url https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=8252ee4d90f3f2004d3d0aeeed003ad49c9a7807
reference_id ?p=openssl.git%3Ba=commitdiff%3Bh=8252ee4d90f3f2004d3d0aeeed003ad49c9a7807
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=8252ee4d90f3f2004d3d0aeeed003ad49c9a7807
38
reference_url https://access.redhat.com/errata/RHSA-2021:3798
reference_id RHSA-2021:3798
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3798
39
reference_url https://access.redhat.com/errata/RHSA-2021:4198
reference_id RHSA-2021:4198
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4198
40
reference_url https://access.redhat.com/errata/RHSA-2021:4424
reference_id RHSA-2021:4424
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4424
41
reference_url https://access.redhat.com/errata/RHSA-2021:4613
reference_id RHSA-2021:4613
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4613
42
reference_url https://access.redhat.com/errata/RHSA-2021:4614
reference_id RHSA-2021:4614
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4614
43
reference_url https://access.redhat.com/errata/RHSA-2021:4861
reference_id RHSA-2021:4861
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4861
44
reference_url https://access.redhat.com/errata/RHSA-2021:4863
reference_id RHSA-2021:4863
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:4863
45
reference_url https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846
reference_id SA44846
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846
46
reference_url https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
reference_id ssa-637483.pdf
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://cert-portal.siemens.com/productcert/pdf/ssa-637483.pdf
47
reference_url https://www.tenable.com/security/tns-2021-03
reference_id tns-2021-03
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.tenable.com/security/tns-2021-03
48
reference_url https://www.tenable.com/security/tns-2021-09
reference_id tns-2021-09
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T20:18:08Z/
url https://www.tenable.com/security/tns-2021-09
49
reference_url https://usn.ubuntu.com/4738-1/
reference_id USN-4738-1
reference_type
scores
url https://usn.ubuntu.com/4738-1/
50
reference_url https://usn.ubuntu.com/4745-1/
reference_id USN-4745-1
reference_type
scores
url https://usn.ubuntu.com/4745-1/
fixed_packages
0
url pkg:apk/alpine/openssl@1.1.1j-r0?arch=x86&distroversion=v3.17&reponame=main
purl pkg:apk/alpine/openssl@1.1.1j-r0?arch=x86&distroversion=v3.17&reponame=main
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@1.1.1j-r0%3Farch=x86&distroversion=v3.17&reponame=main
aliases CVE-2021-23841, GHSA-84rm-qf37-fgc2
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qz6x-nrfe-zyfg
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@1.1.1j-r0%3Farch=x86&distroversion=v3.17&reponame=main