Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-v6w4-6ehk-5fgf
SummaryThe ssl3_read_bytes function in record/rec_layer_s3.c in OpenSSL 1.1.0 before 1.1.0a allows remote attackers to cause a denial of service (infinite loop) by triggering a zero-length record in an SSL_peek call.
Aliases
0
alias CVE-2016-6305
Fixed_packages
0
url pkg:deb/debian/openssl@0?distro=trixie
purl pkg:deb/debian/openssl@0?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@0%3Fdistro=trixie
1
url pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/openssl@1.1.1w-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2hzz-tqgz-tbew
1
vulnerability VCID-ey1a-gmtq-6yct
2
vulnerability VCID-rgbt-w2ev-cfgw
3
vulnerability VCID-utdy-jcq5-w7g6
4
vulnerability VCID-xdsu-j1e8-ducr
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@1.1.1w-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/openssl@3.0.20-1~deb12u1?distro=trixie
purl pkg:deb/debian/openssl@3.0.20-1~deb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-rgbt-w2ev-cfgw
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.0.20-1~deb12u1%3Fdistro=trixie
3
url pkg:deb/debian/openssl@3.5.6-1~deb13u1?distro=trixie
purl pkg:deb/debian/openssl@3.5.6-1~deb13u1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.5.6-1~deb13u1%3Fdistro=trixie
4
url pkg:deb/debian/openssl@3.6.2-1?distro=trixie
purl pkg:deb/debian/openssl@3.6.2-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openssl@3.6.2-1%3Fdistro=trixie
5
url pkg:ebuild/dev-libs/openssl@1.0.2j
purl pkg:ebuild/dev-libs/openssl@1.0.2j
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-libs/openssl@1.0.2j
Affected_packages
References
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6305.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-6305.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-6305
reference_id
reference_type
scores
0
value 0.35953
scoring_system epss
scoring_elements 0.97174
published_at 2026-06-04T12:55:00Z
1
value 0.35953
scoring_system epss
scoring_elements 0.97178
published_at 2026-06-05T12:55:00Z
2
value 0.35953
scoring_system epss
scoring_elements 0.9718
published_at 2026-06-06T12:55:00Z
3
value 0.35953
scoring_system epss
scoring_elements 0.97182
published_at 2026-06-08T12:55:00Z
4
value 0.35953
scoring_system epss
scoring_elements 0.97184
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-6305
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1378127
reference_id 1378127
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1378127
3
reference_url https://security.gentoo.org/glsa/201612-16
reference_id GLSA-201612-16
reference_type
scores
url https://security.gentoo.org/glsa/201612-16
Weaknesses
0
cwe_id 835
name Loop with Unreachable Exit Condition ('Infinite Loop')
description The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Exploits
Severity_range_score5.9 - 5.9
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-v6w4-6ehk-5fgf