Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-gn8r-z2bz-y7c4

Summary Due to a mistake in libcurl's WebSocket code, a malicious server can send a particularly crafted packet which makes libcurl get trapped in an endless busy-loop. There is no other way for the application to escape or exit this loop other than killing the thread/process. This might be used to DoS libcurl-using application.

Aliases

alias	CVE-2025-5399

Fixed_packages

url	pkg:alpm/archlinux/curl@8.14.1-1
purl	pkg:alpm/archlinux/curl@8.14.1-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/curl@8.14.1-1

url	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=aarch64&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armhf&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armv7&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=ppc64le&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=s390x&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.19&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.19&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86_64&distroversion=v3.19&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86_64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=aarch64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=aarch64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armhf&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armhf&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=armv7&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=armv7&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=ppc64le&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=ppc64le&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=riscv64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=riscv64&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=s390x&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=s390x&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86&distroversion=v3.20&reponame=main

url	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.20&reponame=main
purl	pkg:apk/alpine/curl@8.14.1-r0?arch=x86_64&distroversion=v3.20&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/curl@8.14.1-r0%3Farch=x86_64&distroversion=v3.20&reponame=main

url	pkg:deb/debian/curl@0?distro=trixie
purl	pkg:deb/debian/curl@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@0%3Fdistro=trixie

url pkg:deb/debian/curl@7.74.0-1.3%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/curl@7.74.0-1.3%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18p4-rvxz-pkeu

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-1m1w-rayk-sffe

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-287k-bzqy-n7ag

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-6ggz-pa5t-77c4

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-85qb-zec7-subc

vulnerability	VCID-a8z6-bswu-jue8

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-h4nw-va5b-23ef

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-ns58-vmsz-5ued

vulnerability	VCID-nwvb-d466-4uaa

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-ucyf-faft-33bv

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@7.74.0-1.3%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/curl@7.88.1-10%2Bdeb12u14?distro=trixie

purl pkg:deb/debian/curl@7.88.1-10%2Bdeb12u14?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1dw3-33ju-jkbs

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-ezve-gc2h-qyga

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-ucyf-faft-33bv

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@7.88.1-10%252Bdeb12u14%3Fdistro=trixie

url	pkg:deb/debian/curl@8.14.1-1?distro=trixie
purl	pkg:deb/debian/curl@8.14.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.14.1-1%3Fdistro=trixie

url pkg:deb/debian/curl@8.14.1-2%2Bdeb13u3?distro=trixie

purl pkg:deb/debian/curl@8.14.1-2%2Bdeb13u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-fxgf-t3ue-6qhf

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.14.1-2%252Bdeb13u3%3Fdistro=trixie

url	pkg:deb/debian/curl@8.20.0-2?distro=trixie
purl	pkg:deb/debian/curl@8.20.0-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.20.0-2%3Fdistro=trixie

url	pkg:deb/debian/curl@8.20.0-5?distro=trixie
purl	pkg:deb/debian/curl@8.20.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/curl@8.20.0-5%3Fdistro=trixie

url pkg:generic/curl.se/curl@8.14.1

purl pkg:generic/curl.se/curl@8.14.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-58be-1htj-wqdd

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-ezve-gc2h-qyga

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-fxgf-t3ue-6qhf

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-t45k-skv6-cfg2

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.14.1

Affected_packages

url pkg:alpm/archlinux/curl@8.14.0-2

purl pkg:alpm/archlinux/curl@8.14.0-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gn8r-z2bz-y7c4

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/curl@8.14.0-2

url pkg:generic/curl.se/curl@8.13.0

purl pkg:generic/curl.se/curl@8.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-58be-1htj-wqdd

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-bp56-gy66-mqae

vulnerability	VCID-ezve-gc2h-qyga

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-fxgf-t3ue-6qhf

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gn8r-z2bz-y7c4

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-ns6z-wp2x-fkdq

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-t45k-skv6-cfg2

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.13.0

url pkg:generic/curl.se/curl@8.14.0

purl pkg:generic/curl.se/curl@8.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-21ff-tazv-9ud3

vulnerability	VCID-39qh-jayw-g3dh

vulnerability	VCID-58be-1htj-wqdd

vulnerability	VCID-5un8-xymy-37bt

vulnerability	VCID-7wqd-99h2-e7hk

vulnerability	VCID-bcuq-n4vb-k7f3

vulnerability	VCID-ezve-gc2h-qyga

vulnerability	VCID-f9nm-d5ax-qkcb

vulnerability	VCID-fcb7-8163-muf4

vulnerability	VCID-fxgf-t3ue-6qhf

vulnerability	VCID-g7ux-4vz2-ckfg

vulnerability	VCID-gn8r-z2bz-y7c4

vulnerability	VCID-gux4-dncg-h7a6

vulnerability	VCID-hhms-2hg6-nke9

vulnerability	VCID-p155-gbtu-abg1

vulnerability	VCID-secz-78pt-dben

vulnerability	VCID-t45k-skv6-cfg2

vulnerability	VCID-v82t-s9e1-2fbw

vulnerability	VCID-w8ff-vxga-8qcz

vulnerability	VCID-wgur-psum-pbck

vulnerability	VCID-y44u-23he-aya8

resource_url http://public2.vulnerablecode.io/packages/pkg:generic/curl.se/curl@8.14.0

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5399.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5399.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5399

reference_id

reference_type

scores

value	0.00566
scoring_system	epss
scoring_elements	0.68859
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5399

reference_url

https://curl.se/docs/CVE-2025-5399.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Low
scoring_system	cvssv3.1
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T13:20:18Z/

url

https://curl.se/docs/CVE-2025-5399.html

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://hackerone.com/reports/3168039

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T13:20:18Z/

url

https://hackerone.com/reports/3168039

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2370920
reference_id	2370920
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2370920

reference_url	https://security.archlinux.org/ASA-202506-2
reference_id	ASA-202506-2
reference_type
scores
url	https://security.archlinux.org/ASA-202506-2

reference_url

https://security.archlinux.org/AVG-2895

reference_id

AVG-2895

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2895

reference_url

https://curl.se/docs/CVE-2025-5399.json

reference_id

CVE-2025-5399.json

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-09T13:20:18Z/

url

https://curl.se/docs/CVE-2025-5399.json

Weaknesses

cwe_id	835
name	Loop with Unreachable Exit Condition ('Infinite Loop')
description	The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.

Exploits

Severity_range_score 0.1 - 7.5

Exploitability 0.5

Weighted_severity 3.9

Risk_score 1.9

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gn8r-z2bz-y7c4

Vulnerability Instance