[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-49083":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":30,"duplicate_of":9,"upstream":33,"downstream":34,"duplicates":85,"related":86,"reserved_at":9,"published_at":98,"modified_at":99,"state":100,"summary":101,"references_raw":109,"kevs":162,"epss":163,"epss_history":166,"metrics":435,"affected":449},"CVE-2023-49083","cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling `load_pem_pkcs7_certificates` or `load_der_pkcs7_certificates` could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious risk of Denial of Service (DoS) for any application attempting to deserialize a PKCS7 blob/certificate. The consequences extend to potential disruptions in system availability and stability. This vulnerability has been patched in version 41.0.6.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-476","NULL Pointer Dereference","The product dereferences a pointer that it expects to be valid but is NULL.","weakness","Stable","Base","Medium",[],[21],{"_key":22,"name":23,"source":24,"url":25,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":29,"requires_auth":9,"exploitdb":9,"metasploit":9},"GITHUB_PYCA_CRYPTOGRAPHY","Cryptography","github","https://github.com/pyca/cryptography/issues/5615","poc",0.3,false,[],[31,32],"GHSA-jfhm-5ghh-2f97","PYSEC-2023-254",[],[35,37,39,41,43,45,47,49,51,53,55,57,59,61,63,65,67,69,71,73,75,77,79,81,83],{"_key":36},"SUSE-SU-2023:4843-1",{"_key":38},"SUSE-SU-2023:4844-1",{"_key":40},"SUSE-SU-2023:4921-1",{"_key":42},"SUSE-SU-2024:2375-1",{"_key":44},"UBUNTU-CVE-2023-49083",{"_key":46},"SUSE-SU-2023:4842-1",{"_key":48},"OPENSUSE-SU-2024:13472-1",{"_key":50},"DLA-3922-1",{"_key":52},"MGASA-2025-0069",{"_key":54},"USN-6539-1",{"_key":56},"DEBIAN-CVE-2023-49083",{"_key":58},"RHSA-2024:10965",{"_key":60},"RHSA-2024:1878",{"_key":62},"RHSA-2024:2337",{"_key":64},"RHSA-2024:3105",{"_key":66},"RHSA-2024:3781",{"_key":68},"RHSA-2025:13098",{"_key":70},"RHSA-2025:13100",{"_key":72},"RHSA-2025:13101",{"_key":74},"RHSA-2025:13102",{"_key":76},"RHSA-2025:13103",{"_key":78},"RHSA-2025:13104",{"_key":80},"RHSA-2025:14553",{"_key":82},"RHSA-2025:15874",{"_key":84},"RHSA-2024:1640",[],[87,88,89,90,91,92,93,94,96],{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":46},{"_key":48},{"_key":52},{"_key":95},"CGA-WW2V-8W75-WHG8",{"_key":97},"CGA-GQHV-C89V-84PG","2023-11-29T18:50:24.263Z","2025-12-18T15:32:14.214Z","Modified",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":102,"epss_score":103,"severity":104,"severity_score":105,"severity_version":106,"severity_source":107,"severity_vector":108,"severity_status":100},"low",0.01255,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[110,121,129,133,137,141,145,150,154,158],{"url":111,"sources":112,"tags":115},"https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97",[113,107,114],"cve.org","osv_pypi",[116,117,118,119,120],"X Refsource CONFIRM","Exploit","Vendor Advisory","WEB","Advisory",{"url":122,"sources":123,"tags":124},"https://github.com/pyca/cryptography/pull/9926",[113,107,114],[125,126,127,119,128],"X Refsource MISC","Issue Tracking","Patch","FIX",{"url":130,"sources":131,"tags":132},"https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a",[113,107,114],[125,127,119,128],{"url":134,"sources":135,"tags":136},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMNTYMUGFJSDBYBU22FUYBHFRZODRKXV/",[113,107,114],[119],{"url":138,"sources":139,"tags":140},"https://lists.debian.org/debian-lts-announce/2024/10/msg00012.html",[113,107,114],[119],{"url":142,"sources":143,"tags":144},"https://nvd.nist.gov/vuln/detail/CVE-2023-49083",[114],[120],{"url":146,"sources":147,"tags":148},"https://github.com/pyca/cryptography",[114],[149],"PACKAGE",{"url":151,"sources":152,"tags":153},"https://github.com/pypa/advisory-database/tree/main/vulns/cryptography/PYSEC-2023-254.yaml",[114],[119],{"url":155,"sources":156,"tags":157},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMNTYMUGFJSDBYBU22FUYBHFRZODRKXV",[114],[119],{"url":159,"sources":160,"tags":161},"http://www.openwall.com/lists/oss-security/2023/11/29/2",[114],[119],[],{"date":164,"score":103,"percentile":165},"2026-06-04",0.79703,[167,171,174,177,180,183,186,188,191,194,197,200,203,205,208,212,215,218,221,224,227,231,234,237,240,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,294,297,301,304,307,310,313,316,319,322,325,328,331,334,337,339,342,345,348,351,354,357,360,363,366,369,372,375,377,380,383,385,388,391,394,397,400,403,406,409,412,415,417,420,423,426,429,432],{"date":168,"score":169,"percentile":170},"2025-11-04",0.00948,0.75577,{"date":172,"score":169,"percentile":173},"2025-11-05",0.75573,{"date":175,"score":169,"percentile":176},"2025-11-06",0.7557,{"date":178,"score":169,"percentile":179},"2025-11-07",0.75584,{"date":181,"score":169,"percentile":182},"2025-11-08",0.75585,{"date":184,"score":169,"percentile":185},"2025-11-09",0.75583,{"date":187,"score":169,"percentile":173},"2025-11-10",{"date":189,"score":169,"percentile":190},"2025-11-11",0.75574,{"date":192,"score":169,"percentile":193},"2025-11-12",0.75595,{"date":195,"score":169,"percentile":196},"2025-11-13",0.75601,{"date":198,"score":169,"percentile":199},"2025-11-14",0.75606,{"date":201,"score":169,"percentile":202},"2025-11-15",0.75603,{"date":204,"score":169,"percentile":202},"2025-11-16",{"date":206,"score":169,"percentile":207},"2025-11-17",0.75594,{"date":209,"score":210,"percentile":211},"2025-11-18",0.0063,0.67859,{"date":213,"score":210,"percentile":214},"2025-11-19",0.67867,{"date":216,"score":210,"percentile":217},"2025-11-20",0.67862,{"date":219,"score":169,"percentile":220},"2025-11-21",0.75625,{"date":222,"score":169,"percentile":223},"2025-11-22",0.75624,{"date":225,"score":169,"percentile":226},"2025-11-23",0.7561,{"date":228,"score":229,"percentile":230},"2025-11-24",0.00922,0.75253,{"date":232,"score":229,"percentile":233},"2025-11-25",0.75256,{"date":235,"score":229,"percentile":236},"2025-11-26",0.75265,{"date":238,"score":229,"percentile":239},"2025-11-27",0.75266,{"date":241,"score":229,"percentile":242},"2025-11-28",0.75254,{"date":244,"score":229,"percentile":245},"2025-11-29",0.75255,{"date":247,"score":229,"percentile":248},"2025-11-30",0.75251,{"date":250,"score":229,"percentile":251},"2025-12-01",0.7538,{"date":253,"score":229,"percentile":254},"2025-12-02",0.75388,{"date":256,"score":229,"percentile":257},"2025-12-03",0.75376,{"date":259,"score":169,"percentile":260},"2025-12-04",0.75605,{"date":262,"score":169,"percentile":263},"2025-12-05",0.75612,{"date":265,"score":169,"percentile":266},"2025-12-06",0.75617,{"date":268,"score":169,"percentile":269},"2025-12-07",0.75613,{"date":271,"score":169,"percentile":272},"2025-12-08",0.75619,{"date":274,"score":169,"percentile":275},"2025-12-09",0.75643,{"date":277,"score":169,"percentile":278},"2025-12-10",0.75667,{"date":280,"score":169,"percentile":281},"2025-12-11",0.75684,{"date":283,"score":229,"percentile":284},"2025-12-12",0.75354,{"date":286,"score":229,"percentile":287},"2025-12-13",0.75356,{"date":289,"score":229,"percentile":290},"2025-12-14",0.75351,{"date":292,"score":229,"percentile":293},"2025-12-15",0.75352,{"date":295,"score":229,"percentile":296},"2025-12-16",0.75363,{"date":298,"score":299,"percentile":300},"2025-12-17",0.00986,0.76257,{"date":302,"score":299,"percentile":303},"2025-12-18",0.76271,{"date":305,"score":299,"percentile":306},"2025-12-19",0.76286,{"date":308,"score":299,"percentile":309},"2025-12-20",0.7628,{"date":311,"score":299,"percentile":312},"2025-12-21",0.76274,{"date":314,"score":299,"percentile":315},"2025-12-22",0.76269,{"date":317,"score":299,"percentile":318},"2025-12-23",0.76268,{"date":320,"score":299,"percentile":321},"2025-12-24",0.76278,{"date":323,"score":299,"percentile":324},"2025-12-25",0.76299,{"date":326,"score":299,"percentile":327},"2025-12-26",0.76297,{"date":329,"score":299,"percentile":330},"2025-12-27",0.7635,{"date":332,"score":103,"percentile":333},"2025-12-28",0.78896,{"date":335,"score":103,"percentile":336},"2025-12-29",0.78889,{"date":338,"score":103,"percentile":333},"2025-12-30",{"date":340,"score":103,"percentile":341},"2025-12-31",0.78913,{"date":343,"score":103,"percentile":344},"2026-01-01",0.7901,{"date":346,"score":103,"percentile":347},"2026-01-02",0.79009,{"date":349,"score":103,"percentile":350},"2026-01-03",0.79004,{"date":352,"score":103,"percentile":353},"2026-01-04",0.78905,{"date":355,"score":103,"percentile":356},"2026-01-05",0.78901,{"date":358,"score":103,"percentile":359},"2026-01-06",0.78908,{"date":361,"score":103,"percentile":362},"2026-01-07",0.78916,{"date":364,"score":103,"percentile":365},"2026-01-08",0.78926,{"date":367,"score":103,"percentile":368},"2026-01-09",0.78929,{"date":370,"score":103,"percentile":371},"2026-01-10",0.78931,{"date":373,"score":103,"percentile":374},"2026-01-11",0.78924,{"date":376,"score":103,"percentile":341},"2026-01-12",{"date":378,"score":103,"percentile":379},"2026-01-13",0.78909,{"date":381,"score":103,"percentile":382},"2026-01-14",0.7893,{"date":384,"score":103,"percentile":371},"2026-01-15",{"date":386,"score":103,"percentile":387},"2026-01-16",0.78937,{"date":389,"score":103,"percentile":390},"2026-01-17",0.78945,{"date":392,"score":103,"percentile":393},"2026-01-18",0.78941,{"date":395,"score":103,"percentile":396},"2026-01-19",0.78936,{"date":398,"score":103,"percentile":399},"2026-01-20",0.78933,{"date":401,"score":103,"percentile":402},"2026-01-21",0.78939,{"date":404,"score":103,"percentile":405},"2026-01-22",0.78948,{"date":407,"score":103,"percentile":408},"2026-01-23",0.78975,{"date":410,"score":103,"percentile":411},"2026-01-24",0.78985,{"date":413,"score":103,"percentile":414},"2026-01-25",0.78978,{"date":416,"score":103,"percentile":408},"2026-01-26",{"date":418,"score":103,"percentile":419},"2026-01-27",0.78974,{"date":421,"score":103,"percentile":422},"2026-01-28",0.78976,{"date":424,"score":103,"percentile":425},"2026-01-29",0.7897,{"date":427,"score":103,"percentile":428},"2026-01-30",0.78973,{"date":430,"score":103,"percentile":431},"2026-01-31",0.78977,{"date":433,"score":103,"percentile":434},"2026-02-01",0.79074,[436,443,447],{"source":113,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":437,"cvss_v4_0":9},{"baseScore":438,"baseSeverity":439,"vectorString":440,"impactScore":441,"exploitabilityScore":442},5.9,"MEDIUM","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",6,5.6,{"source":107,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":444,"cvss_v4_0":9},{"baseScore":105,"baseSeverity":445,"vectorString":108,"impactScore":441,"exploitabilityScore":446},"HIGH",10,{"source":114,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":448,"cvss_v4_0":9},{"baseScore":438,"baseSeverity":9,"vectorString":440,"impactScore":441,"exploitabilityScore":442},[450,463,468],{"ecosystem":9,"name":451,"vendor":452,"product":451,"cpe_part":453,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":454},"cryptography","cryptography.io","a",[455],{"version":456,"is_range":457,"range_type":458,"version_start":459,"version_start_type":460,"version_end":461,"version_end_type":462,"fixed_in":9},"gte3.1_lt41.0.6",true,"cpe","3.1","including","41.0.6","excluding",{"ecosystem":9,"name":451,"vendor":464,"product":451,"cpe_part":453,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":465},"pyca",[466],{"version":467,"is_range":457,"range_type":113,"version_start":459,"version_start_type":460,"version_end":461,"version_end_type":462,"fixed_in":9},">= 3.1, \u003C 41.0.6",{"ecosystem":469,"name":451,"vendor":469,"product":451,"cpe_part":9,"purl_type":470,"purl_namespace":9,"purl_name":451,"source":9,"versions":471},"PyPI","pypi",[472,476],{"version":473,"is_range":457,"range_type":474,"version_start":9,"version_start_type":9,"version_end":475,"version_end_type":462,"fixed_in":9},"ltf09c261ca10a31fe41b1262306db7f8f1da0e48a","ecosystem","f09c261ca10a31fe41b1262306db7f8f1da0e48a",{"version":477,"is_range":457,"range_type":474,"version_start":459,"version_start_type":460,"version_end":461,"version_end_type":462,"fixed_in":9},"gte3_1_lt41_0_6"]