{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/36345?format=json","vulnerability_id":"VCID-fnac-antr-qbf5","summary":"A vulnerability, which was classified as problematic, has been found in cocagne pysrp up to 1.0.16. This issue affects the function calculate_x of the file srp/_ctsrp.py. The manipulation leads to information exposure through discrepancy. Upgrading to version 1.0.17 is able to address this issue. The name of the patch is dba52642f5e95d3da7af1780561213ee6053195f. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-216875.","aliases":[{"alias":"CVE-2021-4286"},{"alias":"PYSEC-2022-43014"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31061?format=json","purl":"pkg:pypi/srp@1.0.17","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.17"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/31046?format=json","purl":"pkg:pypi/srp@1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/31054?format=json","purl":"pkg:pypi/srp@1.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/31055?format=json","purl":"pkg:pypi/srp@1.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/31056?format=json","purl":"pkg:pypi/srp@1.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/31057?format=json","purl":"pkg:pypi/srp@1.0.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.13"},{"url":"http://public2.vulnerablecode.io/api/packages/31058?format=json","purl":"pkg:pypi/srp@1.0.14","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.14"},{"url":"http://public2.vulnerablecode.io/api/packages/31059?format=json","purl":"pkg:pypi/srp@1.0.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.15"},{"url":"http://public2.vulnerablecode.io/api/packages/31060?format=json","purl":"pkg:pypi/srp@1.0.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.16"},{"url":"http://public2.vulnerablecode.io/api/packages/31047?format=json","purl":"pkg:pypi/srp@1.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/31048?format=json","purl":"pkg:pypi/srp@1.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/31049?format=json","purl":"pkg:pypi/srp@1.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/31050?format=json","purl":"pkg:pypi/srp@1.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/31051?format=json","purl":"pkg:pypi/srp@1.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/31052?format=json","purl":"pkg:pypi/srp@1.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/31053?format=json","purl":"pkg:pypi/srp@1.0.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-fnac-antr-qbf5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/srp@1.0.9"}],"references":[{"reference_url":"https://github.com/cocagne/pysrp/commit/dba52642f5e95d3da7af1780561213ee6053195f","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/cocagne/pysrp/commit/dba52642f5e95d3da7af1780561213ee6053195f"},{"reference_url":"https://github.com/cocagne/pysrp/pull/43","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/cocagne/pysrp/pull/43"},{"reference_url":"https://github.com/cocagne/pysrp/releases/tag/1.0.17","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/cocagne/pysrp/releases/tag/1.0.17"},{"reference_url":"https://vuldb.com/?ctiid.216875","reference_id":"","reference_type":"","scores":[],"url":"https://vuldb.com/?ctiid.216875"},{"reference_url":"https://vuldb.com/?id.216875","reference_id":"","reference_type":"","scores":[],"url":"https://vuldb.com/?id.216875"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fnac-antr-qbf5"}