Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/openssl@3.1.4-r4?arch=s390x&distroversion=v3.23&reponame=main

Type apk

Namespace alpine

Name openssl

Version 3.1.4-r4

Qualifiers

arch	s390x
distroversion	v3.23
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.1.4-r5

Latest_non_vulnerable_version 3.5.6-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-tw8y-th2e-x7ex

vulnerability_id VCID-tw8y-th2e-x7ex

summary openssl: Excessive time spent checking invalid RSA public keys

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6237.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6237.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-6237

reference_id

reference_type

scores

value	0.00524
scoring_system	epss
scoring_elements	0.66906
published_at	2026-04-07T12:55:00Z

value	0.00524
scoring_system	epss
scoring_elements	0.66943
published_at	2026-04-13T12:55:00Z

value	0.00524
scoring_system	epss
scoring_elements	0.66933
published_at	2026-04-04T12:55:00Z

value	0.00524
scoring_system	epss
scoring_elements	0.66955
published_at	2026-04-08T12:55:00Z

value	0.00524
scoring_system	epss
scoring_elements	0.66968
published_at	2026-04-09T12:55:00Z

value	0.00524
scoring_system	epss
scoring_elements	0.66988
published_at	2026-04-11T12:55:00Z

value	0.00524
scoring_system	epss
scoring_elements	0.66974
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-6237

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d

reference_id

0b0f7abfb37350794a4b8960fafc292cd5d1b84d

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-20T14:44:52Z/

url

https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1060858
reference_id	1060858
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1060858

reference_url

https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a

reference_id

18c02492138d1eb8b6548cb26e7b625fb2414a2a

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-20T14:44:52Z/

url

https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a

reference_url

https://www.openssl.org/news/secadv/20240115.txt

reference_id

20240115.txt

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-20T14:44:52Z/

url

https://www.openssl.org/news/secadv/20240115.txt

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2258502
reference_id	2258502
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2258502

reference_url

https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294

reference_id

a830f551557d3d66a84bbb18a5b889c640c36294

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-20T14:44:52Z/

url

https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294

reference_url	https://access.redhat.com/errata/RHSA-2024:2447
reference_id	RHSA-2024:2447
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2447

reference_url	https://access.redhat.com/errata/RHSA-2024:9088
reference_id	RHSA-2024:9088
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9088

reference_url	https://usn.ubuntu.com/6622-1/
reference_id	USN-6622-1
reference_type
scores
url	https://usn.ubuntu.com/6622-1/

reference_url	https://usn.ubuntu.com/7894-1/
reference_id	USN-7894-1
reference_type
scores
url	https://usn.ubuntu.com/7894-1/

fixed_packages

url	pkg:apk/alpine/openssl@3.1.4-r4?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.1.4-r4?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.1.4-r4%3Farch=s390x&distroversion=v3.23&reponame=main

aliases CVE-2023-6237

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tw8y-th2e-x7ex

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.1.4-r4%3Farch=s390x&distroversion=v3.23&reponame=main

Package Instance