Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-w2jh-5zme-x3bu

Summary wireshark: SSH dissector invalid read of memory blocks

Aliases

alias	CVE-2023-6174

Fixed_packages

url	pkg:deb/debian/wireshark@0?distro=trixie
purl	pkg:deb/debian/wireshark@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@0%3Fdistro=trixie

url pkg:deb/debian/wireshark@3.4.10-0%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/wireshark@3.4.10-0%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3bdv-pvum-jud3

vulnerability	VCID-45xv-2dyd-3yad

vulnerability	VCID-4dq1-zbyw-gyac

vulnerability	VCID-66w4-u7u4-rbdq

vulnerability	VCID-7fgb-bzhv-ebfm

vulnerability	VCID-axfm-y4p4-yycj

vulnerability	VCID-azg9-g6ss-4qe6

vulnerability	VCID-b7z2-mayh-7fa6

vulnerability	VCID-bxwp-h46j-fkcn

vulnerability	VCID-cnzm-6acd-1kf8

vulnerability	VCID-dg6t-b7ww-hkej

vulnerability	VCID-e21t-6wmz-kuh6

vulnerability	VCID-e3ka-wgzb-8uaw

vulnerability	VCID-esvq-nfaj-jqac

vulnerability	VCID-fkuk-3xf4-gfh4

vulnerability	VCID-fnb2-jyc6-gqdj

vulnerability	VCID-hzjw-r8cg-xyaf

vulnerability	VCID-j475-vnu8-4fce

vulnerability	VCID-jfgz-rymr-ubbq

vulnerability	VCID-jhrs-99a3-zkd5

vulnerability	VCID-jsfh-g428-syda

vulnerability	VCID-mp77-7che-23a1

vulnerability	VCID-q6jg-vmz9-bucr

vulnerability	VCID-qbjd-cgry-8ubg

vulnerability	VCID-qm9s-hnm2-9bfx

vulnerability	VCID-quef-b85t-uqge

vulnerability	VCID-qvff-2yjc-p7by

vulnerability	VCID-rrcv-xtp9-wfau

vulnerability	VCID-s4qf-31yq-37ad

vulnerability	VCID-snz1-p6zx-s3b3

vulnerability	VCID-sp5k-c5dd-qybs

vulnerability	VCID-th5u-1czb-nfg2

vulnerability	VCID-tjyh-q8g4-pye4

vulnerability	VCID-ugcx-gvqd-kfhk

vulnerability	VCID-vuxd-3st3-1kca

vulnerability	VCID-w9v4-kn7p-77c4

vulnerability	VCID-wutn-naab-zkf2

vulnerability	VCID-xdav-buc3-j3aj

vulnerability	VCID-xkuu-cnxs-hbde

vulnerability	VCID-xmzb-edg9-c7c2

vulnerability	VCID-xvhg-y9cs-wff8

vulnerability	VCID-yg6w-jv29-zfer

vulnerability	VCID-z72t-cwh9-kkds

vulnerability	VCID-zag5-v1aq-63ax

vulnerability	VCID-zxjt-vuqk-dbbh

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@3.4.10-0%252Bdeb11u1%3Fdistro=trixie

url	pkg:deb/debian/wireshark@4.0.11-1~deb12u1?distro=trixie
purl	pkg:deb/debian/wireshark@4.0.11-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.0.11-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/wireshark@4.0.11-1?distro=trixie
purl	pkg:deb/debian/wireshark@4.0.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.0.11-1%3Fdistro=trixie

url pkg:deb/debian/wireshark@4.0.17-0%2Bdeb12u3?distro=trixie

purl pkg:deb/debian/wireshark@4.0.17-0%2Bdeb12u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3bdv-pvum-jud3

vulnerability	VCID-45xv-2dyd-3yad

vulnerability	VCID-4dq1-zbyw-gyac

vulnerability	VCID-54dh-wm3m-ckdc

vulnerability	VCID-7fgb-bzhv-ebfm

vulnerability	VCID-axfm-y4p4-yycj

vulnerability	VCID-azg9-g6ss-4qe6

vulnerability	VCID-bxwp-h46j-fkcn

vulnerability	VCID-cnzm-6acd-1kf8

vulnerability	VCID-dg6t-b7ww-hkej

vulnerability	VCID-e21t-6wmz-kuh6

vulnerability	VCID-esvq-nfaj-jqac

vulnerability	VCID-fkuk-3xf4-gfh4

vulnerability	VCID-fnb2-jyc6-gqdj

vulnerability	VCID-j475-vnu8-4fce

vulnerability	VCID-jfgz-rymr-ubbq

vulnerability	VCID-jhrs-99a3-zkd5

vulnerability	VCID-jsfh-g428-syda

vulnerability	VCID-mp77-7che-23a1

vulnerability	VCID-q6jg-vmz9-bucr

vulnerability	VCID-qbjd-cgry-8ubg

vulnerability	VCID-qvff-2yjc-p7by

vulnerability	VCID-s4qf-31yq-37ad

vulnerability	VCID-snz1-p6zx-s3b3

vulnerability	VCID-sp5k-c5dd-qybs

vulnerability	VCID-th5u-1czb-nfg2

vulnerability	VCID-tjyh-q8g4-pye4

vulnerability	VCID-vuxd-3st3-1kca

vulnerability	VCID-w9v4-kn7p-77c4

vulnerability	VCID-xdav-buc3-j3aj

vulnerability	VCID-xmzb-edg9-c7c2

vulnerability	VCID-xvhg-y9cs-wff8

vulnerability	VCID-yg6w-jv29-zfer

vulnerability	VCID-z72t-cwh9-kkds

vulnerability	VCID-zag5-v1aq-63ax

vulnerability	VCID-zxjt-vuqk-dbbh

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.0.17-0%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/wireshark@4.4.15-0%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/wireshark@4.4.15-0%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7fgb-bzhv-ebfm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.4.15-0%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/wireshark@4.6.6-1?distro=trixie
purl	pkg:deb/debian/wireshark@4.6.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/wireshark@4.6.6-1%3Fdistro=trixie

url	pkg:ebuild/net-analyzer/wireshark@4.0.11
purl	pkg:ebuild/net-analyzer/wireshark@4.0.11
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-analyzer/wireshark@4.0.11

Affected_packages

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6174.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6174.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2250148
reference_id	2250148
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2250148

reference_url	https://security.gentoo.org/glsa/202402-09
reference_id	GLSA-202402-09
reference_type
scores
url	https://security.gentoo.org/glsa/202402-09

Weaknesses

cwe_id	125
name	Out-of-bounds Read
description	The product reads data past the end, or before the beginning, of the intended buffer.

Exploits

Severity_range_score 4.3 - 4.3

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w2jh-5zme-x3bu

Vulnerability Instance