Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-7s3j-r66h-1qa6

Summary openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file

Aliases

alias	CVE-2025-11187

Fixed_packages

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.23&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=v3.22&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=v3.22&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=aarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=aarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armhf&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armhf&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=armv7&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=armv7&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=loongarch64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=loongarch64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=ppc64le&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=ppc64le&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=riscv64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=riscv64&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=s390x&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=s390x&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86&distroversion=edge&reponame=main

url	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main
purl	pkg:apk/alpine/openssl@3.5.5-r0?arch=x86_64&distroversion=edge&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/openssl@3.5.5-r0%3Farch=x86_64&distroversion=edge&reponame=main

url	pkg:deb/debian/openssl@0?distro=trixie
purl	pkg:deb/debian/openssl@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0%3Fdistro=trixie

url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2hzz-tqgz-tbew

vulnerability	VCID-ey1a-gmtq-6yct

vulnerability	VCID-rgbt-w2ev-cfgw

vulnerability	VCID-utdy-jcq5-w7g6

vulnerability	VCID-xdsu-j1e8-ducr

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/openssl@3.0.20-1~deb12u1?distro=trixie

purl pkg:deb/debian/openssl@3.0.20-1~deb12u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-rgbt-w2ev-cfgw

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.20-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie
purl	pkg:deb/debian/openssl@3.5.4-1~deb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.4-1~deb13u2%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.5-1?distro=trixie
purl	pkg:deb/debian/openssl@3.5.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.5-1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.5.6-1~deb13u1?distro=trixie
purl	pkg:deb/debian/openssl@3.5.6-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.6-1~deb13u1%3Fdistro=trixie

url	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl	pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie

Affected_packages

url pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0?arch=6

purl pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0?arch=6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7abj-3zsb-bfep

vulnerability	VCID-7s3j-r66h-1qa6

vulnerability	VCID-qkn4-eq5g-dqgz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.2.2-16.el10_0%3Farch=6

url pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7

purl pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el9_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5hck-s1fh-k3gf

vulnerability	VCID-7abj-3zsb-bfep

vulnerability	VCID-7s3j-r66h-1qa6

vulnerability	VCID-a88x-8v5h-wbc8

vulnerability	VCID-bbu1-667d-vqcb

vulnerability	VCID-gu2w-8kc3-3kgn

vulnerability	VCID-jca9-q4rc-4ub9

vulnerability	VCID-qkn4-eq5g-dqgz

vulnerability	VCID-r9en-es5m-t3gs

vulnerability	VCID-v4en-se25-u7fu

vulnerability	VCID-v6un-s51d-z3hq

vulnerability	VCID-zhax-1919-2ygm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el9_7

url pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1

purl pkg:rpm/redhat/openssl@1:3.5.1-7?arch=el10_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5hck-s1fh-k3gf

vulnerability	VCID-7abj-3zsb-bfep

vulnerability	VCID-7s3j-r66h-1qa6

vulnerability	VCID-a88x-8v5h-wbc8

vulnerability	VCID-bbu1-667d-vqcb

vulnerability	VCID-gu2w-8kc3-3kgn

vulnerability	VCID-jca9-q4rc-4ub9

vulnerability	VCID-qkn4-eq5g-dqgz

vulnerability	VCID-r9en-es5m-t3gs

vulnerability	VCID-v4en-se25-u7fu

vulnerability	VCID-v6un-s51d-z3hq

vulnerability	VCID-zhax-1919-2ygm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl@1:3.5.1-7%3Farch=el10_1

url pkg:rpm/redhat/openssl-main@3.5.6-0.1?arch=hum1

purl pkg:rpm/redhat/openssl-main@3.5.6-0.1?arch=hum1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2hzz-tqgz-tbew

vulnerability	VCID-2x2e-84kd-9qh5

vulnerability	VCID-5hck-s1fh-k3gf

vulnerability	VCID-6b26-x65d-xuek

vulnerability	VCID-7abj-3zsb-bfep

vulnerability	VCID-7s3j-r66h-1qa6

vulnerability	VCID-a88x-8v5h-wbc8

vulnerability	VCID-baea-9pn4-uyfr

vulnerability	VCID-bbu1-667d-vqcb

vulnerability	VCID-dhfk-e75c-cbhq

vulnerability	VCID-ey1a-gmtq-6yct

vulnerability	VCID-g6bf-h8uz-ruf2

vulnerability	VCID-gu2w-8kc3-3kgn

vulnerability	VCID-jca9-q4rc-4ub9

vulnerability	VCID-qkn4-eq5g-dqgz

vulnerability	VCID-r9en-es5m-t3gs

vulnerability	VCID-stbx-fj4j-mqez

vulnerability	VCID-ukgp-r747-zugp

vulnerability	VCID-utdy-jcq5-w7g6

vulnerability	VCID-v4en-se25-u7fu

vulnerability	VCID-v6un-s51d-z3hq

vulnerability	VCID-xdsu-j1e8-ducr

vulnerability	VCID-zhax-1919-2ygm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openssl-main@3.5.6-0.1%3Farch=hum1

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11187.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-11187.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-11187

reference_id

reference_type

scores

value	8e-05
scoring_system	epss
scoring_elements	0.00771
published_at	2026-06-08T12:55:00Z

value	8e-05
scoring_system	epss
scoring_elements	0.00776
published_at	2026-06-05T12:55:00Z

value	8e-05
scoring_system	epss
scoring_elements	0.00779
published_at	2026-06-06T12:55:00Z

value	8e-05
scoring_system	epss
scoring_elements	0.00777
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-11187

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://openssl-library.org/news/secadv/20260127.txt

reference_id

20260127.txt

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://openssl-library.org/news/secadv/20260127.txt

reference_url

https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206

reference_id

205e3a55e16e4bd08c12fdbd3416ab829c0f6206

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://github.com/openssl/openssl/commit/205e3a55e16e4bd08c12fdbd3416ab829c0f6206

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2430375
reference_id	2430375
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2430375

reference_url

https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8

reference_id

8caf359d6e46fb413e8f5f0df765d2e8a51df4e8

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://github.com/openssl/openssl/commit/8caf359d6e46fb413e8f5f0df765d2e8a51df4e8

reference_url

https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e

reference_id

e1079bc17ed93ff16f6b86f33a2fe3336e78817e

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2026-03-20T03:55:43Z/

url

https://github.com/openssl/openssl/commit/e1079bc17ed93ff16f6b86f33a2fe3336e78817e

reference_url	https://access.redhat.com/errata/RHSA-2026:1472
reference_id	RHSA-2026:1472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1472

reference_url	https://access.redhat.com/errata/RHSA-2026:1473
reference_id	RHSA-2026:1473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1473

reference_url	https://access.redhat.com/errata/RHSA-2026:1496
reference_id	RHSA-2026:1496
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1496

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:2485
reference_id	RHSA-2026:2485
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2485

reference_url	https://access.redhat.com/errata/RHSA-2026:2563
reference_id	RHSA-2026:2563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2563

reference_url	https://access.redhat.com/errata/RHSA-2026:3228
reference_id	RHSA-2026:3228
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3228

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:7261
reference_id	RHSA-2026:7261
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7261

reference_url	https://usn.ubuntu.com/7980-1/
reference_id	USN-7980-1
reference_type
scores
url	https://usn.ubuntu.com/7980-1/

Weaknesses

cwe_id	233
name	Improper Handling of Parameters
description	The product does not properly handle when the expected number of parameters, fields, or arguments is not provided in input, or if those parameters are undefined.

cwe_id	476
name	NULL Pointer Dereference
description	A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

Exploits

Severity_range_score 6.1 - 7.5

Exploitability 0.5

Weighted_severity 5.5

Risk_score 2.8

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7s3j-r66h-1qa6

Vulnerability Instance