[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-23931":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":30,"duplicate_of":9,"upstream":33,"downstream":34,"duplicates":87,"related":88,"reserved_at":9,"published_at":104,"modified_at":105,"state":106,"summary":107,"references_raw":115,"kevs":168,"epss":169,"epss_history":172,"metrics":432,"affected":448},"CVE-2023-23931","cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. In affected versions `Cipher.update_into` would accept Python objects which implement the buffer protocol, but provide only immutable buffers. This would allow immutable objects (such as `bytes`) to be mutated, thus violating fundamental rules of Python and resulting in corrupted output. This now correctly raises an exception. This issue has been present since `update_into` was originally introduced in cryptography 1.8.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-754","Improper Check for Unusual or Exceptional Conditions","The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.","weakness","Incomplete","Class","Medium",[],[21],{"_key":22,"name":23,"source":24,"url":25,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":29,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_PYCA_CRYPTOGRAPHY","Cryptography","github","https://github.com/pyca/cryptography/issues/5615","poc",0.3,false,[],[31,32],"GHSA-w7pp-m8wf-vj6r","PYSEC-2023-11",[],[35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83,85],{"_key":36},"ALPINE-CVE-2023-23931",{"_key":38},"OPENSUSE-SU-2024:12681-1",{"_key":40},"SUSE-SU-2023:0722-2",{"_key":42},"SUSE-SU-2023:0737-1",{"_key":44},"SUSE-SU-2023:0837-1",{"_key":46},"SUSE-SU-2023:0838-1",{"_key":48},"SUSE-SU-2023:0839-1",{"_key":50},"SUSE-SU-2023:1763-1",{"_key":52},"SUSE-SU-2023:1767-1",{"_key":54},"SUSE-SU-2023:2144-1",{"_key":56},"SUSE-SU-2023:2218-1",{"_key":58},"SUSE-SU-2023:0722-1",{"_key":60},"OPENSUSE-SU-2025:14739-1",{"_key":62},"DLA-3331-1",{"_key":64},"DLA-3331-2",{"_key":66},"DLA-3922-1",{"_key":68},"MGASA-2023-0071",{"_key":70},"USN-6539-1",{"_key":72},"UBUNTU-CVE-2023-23931",{"_key":74},"DEBIAN-CVE-2023-23931",{"_key":76},"RHSA-2023:4693",{"_key":78},"RHSA-2023:4971",{"_key":80},"RHSA-2023:6615",{"_key":82},"RHSA-2023:6793",{"_key":84},"RHSA-2023:7096",{"_key":86},"RHSA-2024:2985",[],[89,90,91,92,93,94,95,96,97,98,99,100,101,102],{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},{"_key":60},{"_key":68},{"_key":103},"CGA-9XVP-XXJ7-3H47","2023-02-07T20:54:03.628Z","2025-11-03T21:47:19.856Z","Modified",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":108,"epss_score":109,"severity":110,"severity_score":111,"severity_version":112,"severity_source":113,"severity_vector":114,"severity_status":106},"low",0.00688,"medium",6.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",[116,128,135,139,143,147,151,155,160,164],{"url":117,"sources":118,"tags":121},"https://github.com/pyca/cryptography/security/advisories/GHSA-w7pp-m8wf-vj6r",[119,113,120],"cve.org","osv_pypi",[122,123,124,125,126,127],"X Refsource CONFIRM","Exploit","Vendor Advisory","WEB","EVIDENCE","Advisory",{"url":129,"sources":130,"tags":131},"https://github.com/pyca/cryptography/pull/8230/commits/94a50a9731f35405f0357fa5f3b177d46a726ab3",[119,113,120],[132,133,134],"X Refsource MISC","Patch","FIX",{"url":136,"sources":137,"tags":138},"https://security.netapp.com/advisory/ntap-20230324-0007/",[119,113],[],{"url":140,"sources":141,"tags":142},"https://lists.debian.org/debian-lts-announce/2024/10/msg00012.html",[119,113,120],[125],{"url":144,"sources":145,"tags":146},"https://nvd.nist.gov/vuln/detail/CVE-2023-23931",[120],[127],{"url":148,"sources":149,"tags":150},"https://github.com/pyca/cryptography/pull/8230",[120],[125],{"url":152,"sources":153,"tags":154},"https://github.com/pyca/cryptography/commit/d6951dca25de45abd52da51b608055371fbcde4e",[120],[125],{"url":156,"sources":157,"tags":158},"https://github.com/pyca/cryptography",[120],[159],"PACKAGE",{"url":161,"sources":162,"tags":163},"https://github.com/pypa/advisory-database/tree/main/vulns/cryptography/PYSEC-2023-11.yaml",[120],[125],{"url":165,"sources":166,"tags":167},"https://security.netapp.com/advisory/ntap-20230324-0007",[120],[125],[],{"date":170,"score":109,"percentile":171},"2026-06-04",0.72123,[173,177,180,183,186,189,192,195,197,200,203,206,209,212,215,219,222,225,228,231,234,236,238,241,243,245,248,251,255,258,261,263,266,268,271,273,276,279,282,285,288,291,294,297,300,303,306,309,312,316,318,321,324,326,329,332,335,338,341,345,348,351,354,356,358,361,364,367,370,372,375,378,381,384,387,390,392,394,397,400,403,406,409,412,414,417,420,423,426,429],{"date":174,"score":175,"percentile":176},"2025-11-04",0.00717,0.71632,{"date":178,"score":175,"percentile":179},"2025-11-05",0.71614,{"date":181,"score":175,"percentile":182},"2025-11-06",0.71613,{"date":184,"score":175,"percentile":185},"2025-11-07",0.7163,{"date":187,"score":175,"percentile":188},"2025-11-08",0.71627,{"date":190,"score":175,"percentile":191},"2025-11-09",0.71619,{"date":193,"score":175,"percentile":194},"2025-11-10",0.71607,{"date":196,"score":175,"percentile":179},"2025-11-11",{"date":198,"score":175,"percentile":199},"2025-11-12",0.71633,{"date":201,"score":175,"percentile":202},"2025-11-13",0.71641,{"date":204,"score":175,"percentile":205},"2025-11-14",0.71648,{"date":207,"score":175,"percentile":208},"2025-11-15",0.71649,{"date":210,"score":175,"percentile":211},"2025-11-16",0.71647,{"date":213,"score":175,"percentile":214},"2025-11-17",0.71639,{"date":216,"score":217,"percentile":218},"2025-11-18",0.02222,0.83133,{"date":220,"score":217,"percentile":221},"2025-11-19",0.83135,{"date":223,"score":217,"percentile":224},"2025-11-20",0.8314,{"date":226,"score":175,"percentile":227},"2025-11-21",0.71663,{"date":229,"score":175,"percentile":230},"2025-11-22",0.71658,{"date":232,"score":175,"percentile":233},"2025-11-23",0.71638,{"date":235,"score":175,"percentile":185},"2025-11-24",{"date":237,"score":175,"percentile":199},"2025-11-25",{"date":239,"score":175,"percentile":240},"2025-11-26",0.7164,{"date":242,"score":175,"percentile":240},"2025-11-27",{"date":244,"score":175,"percentile":188},"2025-11-28",{"date":246,"score":175,"percentile":247},"2025-11-29",0.71618,{"date":249,"score":175,"percentile":250},"2025-11-30",0.71612,{"date":252,"score":253,"percentile":254},"2025-12-01",0.00331,0.55563,{"date":256,"score":253,"percentile":257},"2025-12-02",0.55575,{"date":259,"score":253,"percentile":260},"2025-12-03",0.55567,{"date":262,"score":175,"percentile":247},"2025-12-04",{"date":264,"score":175,"percentile":265},"2025-12-05",0.71631,{"date":267,"score":175,"percentile":176},"2025-12-06",{"date":269,"score":175,"percentile":270},"2025-12-07",0.71636,{"date":272,"score":175,"percentile":240},"2025-12-08",{"date":274,"score":175,"percentile":275},"2025-12-09",0.7167,{"date":277,"score":175,"percentile":278},"2025-12-10",0.71706,{"date":280,"score":175,"percentile":281},"2025-12-11",0.71729,{"date":283,"score":175,"percentile":284},"2025-12-12",0.71752,{"date":286,"score":175,"percentile":287},"2025-12-13",0.71759,{"date":289,"score":175,"percentile":290},"2025-12-14",0.7176,{"date":292,"score":175,"percentile":293},"2025-12-15",0.71757,{"date":295,"score":175,"percentile":296},"2025-12-16",0.71765,{"date":298,"score":175,"percentile":299},"2025-12-17",0.71779,{"date":301,"score":175,"percentile":302},"2025-12-18",0.71797,{"date":304,"score":175,"percentile":305},"2025-12-19",0.71813,{"date":307,"score":175,"percentile":308},"2025-12-20",0.71812,{"date":310,"score":175,"percentile":311},"2025-12-21",0.71806,{"date":313,"score":314,"percentile":315},"2025-12-22",0.0066,0.70463,{"date":317,"score":314,"percentile":315},"2025-12-23",{"date":319,"score":314,"percentile":320},"2025-12-24",0.70473,{"date":322,"score":314,"percentile":323},"2025-12-25",0.70496,{"date":325,"score":314,"percentile":323},"2025-12-26",{"date":327,"score":314,"percentile":328},"2025-12-27",0.70533,{"date":330,"score":314,"percentile":331},"2025-12-28",0.70468,{"date":333,"score":314,"percentile":334},"2025-12-29",0.70464,{"date":336,"score":314,"percentile":337},"2025-12-30",0.70478,{"date":339,"score":314,"percentile":340},"2025-12-31",0.70499,{"date":342,"score":343,"percentile":344},"2026-01-01",0.00326,0.55191,{"date":346,"score":343,"percentile":347},"2026-01-02",0.55172,{"date":349,"score":343,"percentile":350},"2026-01-03",0.55161,{"date":352,"score":314,"percentile":353},"2026-01-04",0.70501,{"date":355,"score":314,"percentile":323},"2026-01-05",{"date":357,"score":314,"percentile":353},"2026-01-06",{"date":359,"score":314,"percentile":360},"2026-01-07",0.70516,{"date":362,"score":314,"percentile":363},"2026-01-08",0.70532,{"date":365,"score":314,"percentile":366},"2026-01-09",0.70537,{"date":368,"score":314,"percentile":369},"2026-01-10",0.70538,{"date":371,"score":314,"percentile":328},"2026-01-11",{"date":373,"score":314,"percentile":374},"2026-01-12",0.70522,{"date":376,"score":314,"percentile":377},"2026-01-13",0.70519,{"date":379,"score":314,"percentile":380},"2026-01-14",0.70545,{"date":382,"score":314,"percentile":383},"2026-01-15",0.70552,{"date":385,"score":314,"percentile":386},"2026-01-16",0.7057,{"date":388,"score":314,"percentile":389},"2026-01-17",0.70564,{"date":391,"score":314,"percentile":380},"2026-01-18",{"date":393,"score":314,"percentile":366},"2026-01-19",{"date":395,"score":314,"percentile":396},"2026-01-20",0.70546,{"date":398,"score":314,"percentile":399},"2026-01-21",0.70549,{"date":401,"score":314,"percentile":402},"2026-01-22",0.70562,{"date":404,"score":314,"percentile":405},"2026-01-23",0.70596,{"date":407,"score":314,"percentile":408},"2026-01-24",0.70601,{"date":410,"score":314,"percentile":411},"2026-01-25",0.70575,{"date":413,"score":314,"percentile":386},"2026-01-26",{"date":415,"score":314,"percentile":416},"2026-01-27",0.70573,{"date":418,"score":314,"percentile":419},"2026-01-28",0.70588,{"date":421,"score":314,"percentile":422},"2026-01-29",0.70586,{"date":424,"score":314,"percentile":425},"2026-01-30",0.70595,{"date":427,"score":314,"percentile":428},"2026-01-31",0.706,{"date":430,"score":343,"percentile":431},"2026-02-01",0.55164,[433,440,443],{"source":119,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":434,"cvss_v4_0":9},{"baseScore":435,"baseSeverity":436,"vectorString":437,"impactScore":438,"exploitabilityScore":439},4.8,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",4.2,5.6,{"source":113,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":441,"cvss_v4_0":9},{"baseScore":111,"baseSeverity":436,"vectorString":114,"impactScore":438,"exploitabilityScore":442},10,{"source":120,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":444,"cvss_v4_0":445},{"baseScore":111,"baseSeverity":9,"vectorString":114,"impactScore":438,"exploitabilityScore":442},{"baseScore":446,"baseSeverity":9,"vectorString":447,"impactScore":9,"exploitabilityScore":9},6.9,"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",[449,462,467],{"ecosystem":9,"name":450,"vendor":451,"product":450,"cpe_part":452,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":453},"cryptography","cryptography.io","a",[454],{"version":455,"is_range":456,"range_type":457,"version_start":458,"version_start_type":459,"version_end":460,"version_end_type":461,"fixed_in":9},"gte1.8_lt39.0.1",true,"cpe","1.8","including","39.0.1","excluding",{"ecosystem":9,"name":450,"vendor":463,"product":450,"cpe_part":452,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":464},"pyca",[465],{"version":466,"is_range":456,"range_type":119,"version_start":458,"version_start_type":459,"version_end":460,"version_end_type":461,"fixed_in":9},">=1.8, \u003C 39.0.1",{"ecosystem":468,"name":450,"vendor":468,"product":450,"cpe_part":9,"purl_type":469,"purl_namespace":9,"purl_name":450,"source":9,"versions":470},"PyPI","pypi",[471,475],{"version":472,"is_range":456,"range_type":473,"version_start":9,"version_start_type":9,"version_end":474,"version_end_type":461,"fixed_in":9},"lt94a50a9731f35405f0357fa5f3b177d46a726ab3","ecosystem","94a50a9731f35405f0357fa5f3b177d46a726ab3",{"version":476,"is_range":456,"range_type":473,"version_start":458,"version_start_type":459,"version_end":460,"version_end_type":461,"fixed_in":9},"gte1_8_lt39_0_1"]