{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99000?format=json","vulnerability_id":"VCID-t7p2-zytn-fycp","summary":"The ssl.match_hostname function in CPython (aka Python) before 2.7.9 and 3.x before 3.3.3 does not properly handle wildcards in hostnames, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.","aliases":[{"alias":"CVE-2013-7440"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125535?format=json","purl":"pkg:deb/debian/python2.7@2.7.9-1?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.9-1%3Fdistro=bullseye"},{"url":"http://public2.vulnerablecode.io/api/packages/6153?format=json","purl":"pkg:deb/debian/python2.7@2.7.9-2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16gk-g5t6-5bbf"},{"vulnerability":"VCID-3fpe-pvdm-kyhs"},{"vulnerability":"VCID-5arb-eqy5-3qfy"},{"vulnerability":"VCID-9dyt-z3y9-nkb8"},{"vulnerability":"VCID-cpkh-xpsk-nqf1"},{"vulnerability":"VCID-dpsq-73nq-hbcg"},{"vulnerability":"VCID-ems8-fwjz-q3at"},{"vulnerability":"VCID-fbrt-d4gm-efhn"},{"vulnerability":"VCID-fwhj-bjfc-h3an"},{"vulnerability":"VCID-g7gc-5ynw-ffcb"},{"vulnerability":"VCID-g932-tm87-ebb6"},{"vulnerability":"VCID-ga74-8ch9-a3hc"},{"vulnerability":"VCID-gczs-recc-gya2"},{"vulnerability":"VCID-k2jc-cyb3-yqcc"},{"vulnerability":"VCID-nqa2-kqcf-wyez"},{"vulnerability":"VCID-p2er-rxka-r7dk"},{"vulnerability":"VCID-pa1n-3at9-qbhu"},{"vulnerability":"VCID-qjut-1y6u-pqek"},{"vulnerability":"VCID-ru8s-bq99-9bhd"},{"vulnerability":"VCID-sse9-sa1n-wbc9"},{"vulnerability":"VCID-stc9-apq8-k7a6"},{"vulnerability":"VCID-taaq-u851-5kdt"},{"vulnerability":"VCID-thsx-3yu5-43ff"},{"vulnerability":"VCID-u4fg-6shu-jkh7"},{"vulnerability":"VCID-ua1b-81hn-ykfw"},{"vulnerability":"VCID-ue7j-kq6d-xbeb"},{"vulnerability":"VCID-vm8m-na8y-67et"},{"vulnerability":"VCID-wnxx-rc7w-cke4"},{"vulnerability":"VCID-yrph-wbpc-5kgz"},{"vulnerability":"VCID-zhu3-43e2-syh5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.9-2"},{"url":"http://public2.vulnerablecode.io/api/packages/125526?format=json","purl":"pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.18-8%252Bdeb11u1%3Fdistro=bullseye"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/6152?format=json","purl":"pkg:deb/debian/python2.7@2.7.3-6%2Bdeb7u2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16gk-g5t6-5bbf"},{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-3fpe-pvdm-kyhs"},{"vulnerability":"VCID-46e4-wwyz-3kb9"},{"vulnerability":"VCID-5arb-eqy5-3qfy"},{"vulnerability":"VCID-78qy-9w1z-8yhy"},{"vulnerability":"VCID-97wt-q55v-17dg"},{"vulnerability":"VCID-9dyt-z3y9-nkb8"},{"vulnerability":"VCID-c6vf-8bw4-8bgj"},{"vulnerability":"VCID-cpkh-xpsk-nqf1"},{"vulnerability":"VCID-cwra-a4xc-budx"},{"vulnerability":"VCID-dpsq-73nq-hbcg"},{"vulnerability":"VCID-ems8-fwjz-q3at"},{"vulnerability":"VCID-fbrt-d4gm-efhn"},{"vulnerability":"VCID-fwhj-bjfc-h3an"},{"vulnerability":"VCID-g7gc-5ynw-ffcb"},{"vulnerability":"VCID-g932-tm87-ebb6"},{"vulnerability":"VCID-ga74-8ch9-a3hc"},{"vulnerability":"VCID-gczs-recc-gya2"},{"vulnerability":"VCID-k2jc-cyb3-yqcc"},{"vulnerability":"VCID-nqa2-kqcf-wyez"},{"vulnerability":"VCID-p2er-rxka-r7dk"},{"vulnerability":"VCID-pa1n-3at9-qbhu"},{"vulnerability":"VCID-pw5s-1prw-vqhz"},{"vulnerability":"VCID-qjut-1y6u-pqek"},{"vulnerability":"VCID-ru8s-bq99-9bhd"},{"vulnerability":"VCID-sse9-sa1n-wbc9"},{"vulnerability":"VCID-stc9-apq8-k7a6"},{"vulnerability":"VCID-t7p2-zytn-fycp"},{"vulnerability":"VCID-taaq-u851-5kdt"},{"vulnerability":"VCID-thsx-3yu5-43ff"},{"vulnerability":"VCID-u4fg-6shu-jkh7"},{"vulnerability":"VCID-ua1b-81hn-ykfw"},{"vulnerability":"VCID-ue7j-kq6d-xbeb"},{"vulnerability":"VCID-vm8m-na8y-67et"},{"vulnerability":"VCID-wnxx-rc7w-cke4"},{"vulnerability":"VCID-yrph-wbpc-5kgz"},{"vulnerability":"VCID-z7k5-3vc9-2uga"},{"vulnerability":"VCID-zhu3-43e2-syh5"},{"vulnerability":"VCID-zx9p-cab8-6ubc"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.3-6%252Bdeb7u2"},{"url":"http://public2.vulnerablecode.io/api/packages/178806?format=json","purl":"pkg:rpm/redhat/python27@1.1-25?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27@1.1-25%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178807?format=json","purl":"pkg:rpm/redhat/python27@1.1-25?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27@1.1-25%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178800?format=json","purl":"pkg:rpm/redhat/python27-numpy@1:1.7.1-10?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-numpy@1:1.7.1-10%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178803?format=json","purl":"pkg:rpm/redhat/python27-numpy@1:1.7.1-10?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-numpy@1:1.7.1-10%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178799?format=json","purl":"pkg:rpm/redhat/python27-python@2.7.8-14?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python@2.7.8-14%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178801?format=json","purl":"pkg:rpm/redhat/python27-python@2.7.8-16?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python@2.7.8-16%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178811?format=json","purl":"pkg:rpm/redhat/python27-python-docutils@0.11-2?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-docutils@0.11-2%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178809?format=json","purl":"pkg:rpm/redhat/python27-python-pip@7.1.0-2?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pip@7.1.0-2%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178810?format=json","purl":"pkg:rpm/redhat/python27-python-pip@7.1.0-2?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pip@7.1.0-2%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178812?format=json","purl":"pkg:rpm/redhat/python27-python-pymongo@3.2.1-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pymongo@3.2.1-1%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178813?format=json","purl":"pkg:rpm/redhat/python27-python-pymongo@3.2.1-1?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-pymongo@3.2.1-1%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178797?format=json","purl":"pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178802?format=json","purl":"pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-python-virtualenv@13.1.0-1%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178805?format=json","purl":"pkg:rpm/redhat/python27-PyYAML@3.10-14?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-PyYAML@3.10-14%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178808?format=json","purl":"pkg:rpm/redhat/python27-PyYAML@3.10-14?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-PyYAML@3.10-14%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/178804?format=json","purl":"pkg:rpm/redhat/python27-scipy@0.12.1-3?arch=el6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-scipy@0.12.1-3%3Farch=el6"},{"url":"http://public2.vulnerablecode.io/api/packages/178798?format=json","purl":"pkg:rpm/redhat/python27-scipy@0.12.1-4?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-t7p2-zytn-fycp"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python27-scipy@0.12.1-4%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/160336?format=json","purl":"pkg:rpm/redhat/python-httplib2@0.6.0-6?arch=el7sat","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-172n-hbu2-6fd3"},{"vulnerability":"VCID-2a6m-asyd-8uax"},{"vulnerability":"VCID-2bvt-36z3-9qar"},{"vulnerability":"VCID-2nna-s9bv-sycc"},{"vulnerability":"VCID-8jj4-fqt3-xbhy"},{"vulnerability":"VCID-992k-gq1d-1kcf"},{"vulnerability":"VCID-atus-ryef-17h1"},{"vulnerability":"VCID-b3hv-v2tw-p7ca"},{"vulnerability":"VCID-bumt-76s4-47da"},{"vulnerability":"VCID-dka6-3zwp-akf8"},{"vulnerability":"VCID-e974-hhh6-8bhw"},{"vulnerability":"VCID-m7u7-uh4a-8yhe"},{"vulnerability":"VCID-mv2j-2zkr-ubhb"},{"vulnerability":"VCID-qjt7-u7kg-4kb9"},{"vulnerability":"VCID-r6rk-smsu-m7d5"},{"vulnerability":"VCID-sfq1-wcc6-jkdt"},{"vulnerability":"VCID-t7p2-zytn-fycp"},{"vulnerability":"VCID-y65f-py17-z7d5"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-httplib2@0.6.0-6%3Farch=el7sat"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7440.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-7440.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7440","reference_id":"","reference_type":"","scores":[{"value":"0.00358","scoring_system":"epss","scoring_elements":"0.58295","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00358","scoring_system":"epss","scoring_elements":"0.58342","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00358","scoring_system":"epss","scoring_elements":"0.58351","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00358","scoring_system":"epss","scoring_elements":"0.58341","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00358","scoring_system":"epss","scoring_elements":"0.58326","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-7440"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7440","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7440"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1224999","reference_id":"1224999","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1224999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2016:1166","reference_id":"RHSA-2016:1166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2016:1166"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.0","risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t7p2-zytn-fycp"}