[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-6237":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":49,"related":50,"reserved_at":9,"published_at":61,"modified_at":62,"state":63,"summary":64,"references_raw":73,"kevs":118,"epss":119,"epss_history":122,"metrics":390,"affected":398},"CVE-2023-6237","Issue summary: Checking excessively long invalid RSA public keys may take\na long time.\n\nImpact summary: Applications that use the function EVP_PKEY_public_check()\nto check RSA public keys may experience long delays. Where the key that\nis being checked has been obtained from an untrusted source this may lead\nto a Denial of Service.\n\nWhen function EVP_PKEY_public_check() is called on RSA public keys,\na computation is done to confirm that the RSA modulus, n, is composite.\nFor valid RSA keys, n is a product of two or more large primes and this\ncomputation completes quickly. However, if n is an overly large prime,\nthen this computation would take a long time.\n\nAn application that calls EVP_PKEY_public_check() and supplies an RSA key\nobtained from an untrusted source could be vulnerable to a Denial of Service\nattack.\n\nThe function EVP_PKEY_public_check() is not called from other OpenSSL\nfunctions however it is called from the OpenSSL pkey command line\napplication. For that reason that application is also vulnerable if used\nwith the '-pubin' and '-check' options on untrusted data.\n\nThe OpenSSL SSL/TLS implementation is not affected by this issue.\n\nThe OpenSSL 3.0 and 3.1 FIPS providers are affected by this issue.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-606","Unchecked Input for Loop Condition","The product does not properly check inputs that are used for loop conditions, potentially leading to a denial of service or other consequences because of excessive looping.","weakness","Draft","Base",[],[],[],[],[23,25,27,29,31,33,35,37,39,41,43,45,47],{"_key":24},"ALPINE-CVE-2023-6237",{"_key":26},"SUSE-SU-2024:0172-1",{"_key":28},"SUSE-SU-2024:0518-1",{"_key":30},"OPENSUSE-SU-2024:13633-1",{"_key":32},"MGASA-2024-0020",{"_key":34},"MGASA-2024-0036",{"_key":36},"MGASA-2024-0281",{"_key":38},"UBUNTU-CVE-2023-6237",{"_key":40},"USN-6622-1",{"_key":42},"DEBIAN-CVE-2023-6237",{"_key":44},"USN-7894-1",{"_key":46},"RHSA-2024:2447",{"_key":48},"RHSA-2024:9088",[],[51,52,53,54,55,56,57,59],{"_key":26},{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":58},"CGA-RF4H-6PXC-P9P7",{"_key":60},"CGA-62VJ-R9X6-X394","2024-04-25T06:27:26.990Z","2026-05-12T10:41:05.568Z","Deferred",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":66,"epss_score":67,"severity":68,"severity_score":69,"severity_version":70,"severity_source":71,"severity_vector":72,"severity_status":63},false,"low",0.00944,"medium",5.9,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",[74,80,85,89,93,98,102,106,110,114],{"url":75,"sources":76,"tags":78},"https://www.openssl.org/news/secadv/20240115.txt",[71,77],"nvd",[79],"Vendor Advisory",{"url":81,"sources":82,"tags":83},"https://github.com/openssl/openssl/commit/18c02492138d1eb8b6548cb26e7b625fb2414a2a",[71,77],[84],"Patch",{"url":86,"sources":87,"tags":88},"https://github.com/openssl/openssl/commit/a830f551557d3d66a84bbb18a5b889c640c36294",[71,77],[84],{"url":90,"sources":91,"tags":92},"https://github.com/openssl/openssl/commit/0b0f7abfb37350794a4b8960fafc292cd5d1b84d",[71,77],[84],{"url":94,"sources":95,"tags":96},"http://www.openwall.com/lists/oss-security/2024/03/11/1",[71,77],[97],"X Transferred",{"url":99,"sources":100,"tags":101},"https://security.netapp.com/advisory/ntap-20240531-0007/",[71,77],[97],{"url":103,"sources":104,"tags":105},"https://cert-portal.siemens.com/productcert/html/ssa-265688.html",[71,77],[],{"url":107,"sources":108,"tags":109},"https://cert-portal.siemens.com/productcert/html/ssa-331112.html",[71,77],[],{"url":111,"sources":112,"tags":113},"https://cert-portal.siemens.com/productcert/html/ssa-915275.html",[71,77],[],{"url":115,"sources":116,"tags":117},"https://cert-portal.siemens.com/productcert/html/ssa-769027.html",[71,77],[],[],{"date":120,"score":67,"percentile":121},"2026-06-04",0.76657,[123,127,130,133,136,139,142,145,147,150,153,156,159,162,165,169,172,175,178,181,184,187,190,192,194,196,200,203,206,209,212,216,219,222,225,228,231,234,237,240,243,246,248,251,254,257,260,264,267,271,273,276,279,281,284,287,290,293,296,299,302,304,307,310,312,315,318,321,324,327,330,333,336,339,342,345,348,351,354,357,360,363,366,369,372,375,378,381,384,387],{"date":124,"score":125,"percentile":126},"2025-11-04",0.00524,0.66091,{"date":128,"score":125,"percentile":129},"2025-11-05",0.66067,{"date":131,"score":125,"percentile":132},"2025-11-06",0.66063,{"date":134,"score":125,"percentile":135},"2025-11-07",0.66075,{"date":137,"score":125,"percentile":138},"2025-11-08",0.66073,{"date":140,"score":125,"percentile":141},"2025-11-09",0.66062,{"date":143,"score":125,"percentile":144},"2025-11-10",0.66053,{"date":146,"score":125,"percentile":141},"2025-11-11",{"date":148,"score":125,"percentile":149},"2025-11-12",0.66083,{"date":151,"score":125,"percentile":152},"2025-11-13",0.66094,{"date":154,"score":125,"percentile":155},"2025-11-14",0.66101,{"date":157,"score":125,"percentile":158},"2025-11-15",0.66097,{"date":160,"score":125,"percentile":161},"2025-11-16",0.6609,{"date":163,"score":125,"percentile":164},"2025-11-17",0.66089,{"date":166,"score":167,"percentile":168},"2025-11-18",0.01265,0.77676,{"date":170,"score":167,"percentile":171},"2025-11-19",0.77683,{"date":173,"score":167,"percentile":174},"2025-11-20",0.77691,{"date":176,"score":125,"percentile":177},"2025-11-21",0.661,{"date":179,"score":125,"percentile":180},"2025-11-22",0.66108,{"date":182,"score":125,"percentile":183},"2025-11-23",0.66092,{"date":185,"score":125,"percentile":186},"2025-11-24",0.66082,{"date":188,"score":125,"percentile":189},"2025-11-25",0.66086,{"date":191,"score":125,"percentile":183},"2025-11-26",{"date":193,"score":125,"percentile":158},"2025-11-27",{"date":195,"score":125,"percentile":186},"2025-11-28",{"date":197,"score":198,"percentile":199},"2025-11-29",0.00391,0.59338,{"date":201,"score":198,"percentile":202},"2025-11-30",0.59326,{"date":204,"score":198,"percentile":205},"2025-12-01",0.5947,{"date":207,"score":198,"percentile":208},"2025-12-02",0.59483,{"date":210,"score":198,"percentile":211},"2025-12-03",0.59487,{"date":213,"score":214,"percentile":215},"2025-12-04",0.00539,0.66661,{"date":217,"score":214,"percentile":218},"2025-12-05",0.66673,{"date":220,"score":214,"percentile":221},"2025-12-06",0.66676,{"date":223,"score":214,"percentile":224},"2025-12-07",0.66669,{"date":226,"score":214,"percentile":227},"2025-12-08",0.66672,{"date":229,"score":214,"percentile":230},"2025-12-09",0.66703,{"date":232,"score":214,"percentile":233},"2025-12-10",0.66752,{"date":235,"score":214,"percentile":236},"2025-12-11",0.66771,{"date":238,"score":214,"percentile":239},"2025-12-12",0.66797,{"date":241,"score":214,"percentile":242},"2025-12-13",0.66804,{"date":244,"score":214,"percentile":245},"2025-12-14",0.66805,{"date":247,"score":214,"percentile":242},"2025-12-15",{"date":249,"score":214,"percentile":250},"2025-12-16",0.66816,{"date":252,"score":125,"percentile":253},"2025-12-17",0.66231,{"date":255,"score":214,"percentile":256},"2025-12-18",0.66867,{"date":258,"score":214,"percentile":259},"2025-12-19",0.66887,{"date":261,"score":262,"percentile":263},"2025-12-20",0.00711,0.71668,{"date":265,"score":262,"percentile":266},"2025-12-21",0.71662,{"date":268,"score":269,"percentile":270},"2025-12-22",0.00655,0.70303,{"date":272,"score":269,"percentile":270},"2025-12-23",{"date":274,"score":269,"percentile":275},"2025-12-24",0.70313,{"date":277,"score":269,"percentile":278},"2025-12-25",0.70336,{"date":280,"score":269,"percentile":278},"2025-12-26",{"date":282,"score":269,"percentile":283},"2025-12-27",0.7037,{"date":285,"score":269,"percentile":286},"2025-12-28",0.70308,{"date":288,"score":269,"percentile":289},"2025-12-29",0.70304,{"date":291,"score":269,"percentile":292},"2025-12-30",0.70317,{"date":294,"score":269,"percentile":295},"2025-12-31",0.70337,{"date":297,"score":269,"percentile":298},"2026-01-01",0.70493,{"date":300,"score":269,"percentile":301},"2026-01-02",0.70487,{"date":303,"score":269,"percentile":301},"2026-01-03",{"date":305,"score":269,"percentile":306},"2026-01-04",0.70338,{"date":308,"score":269,"percentile":309},"2026-01-05",0.70331,{"date":311,"score":269,"percentile":295},"2026-01-06",{"date":313,"score":269,"percentile":314},"2026-01-07",0.70352,{"date":316,"score":269,"percentile":317},"2026-01-08",0.70367,{"date":319,"score":269,"percentile":320},"2026-01-09",0.70373,{"date":322,"score":269,"percentile":323},"2026-01-10",0.70374,{"date":325,"score":269,"percentile":326},"2026-01-11",0.70368,{"date":328,"score":269,"percentile":329},"2026-01-12",0.7036,{"date":331,"score":269,"percentile":332},"2026-01-13",0.70357,{"date":334,"score":269,"percentile":335},"2026-01-14",0.70383,{"date":337,"score":269,"percentile":338},"2026-01-15",0.70389,{"date":340,"score":269,"percentile":341},"2026-01-16",0.70406,{"date":343,"score":269,"percentile":344},"2026-01-17",0.704,{"date":346,"score":269,"percentile":347},"2026-01-18",0.70381,{"date":349,"score":269,"percentile":350},"2026-01-19",0.70372,{"date":352,"score":125,"percentile":353},"2026-01-20",0.66336,{"date":355,"score":125,"percentile":356},"2026-01-21",0.66348,{"date":358,"score":125,"percentile":359},"2026-01-22",0.66359,{"date":361,"score":125,"percentile":362},"2026-01-23",0.66389,{"date":364,"score":125,"percentile":365},"2026-01-24",0.66398,{"date":367,"score":125,"percentile":368},"2026-01-25",0.66366,{"date":370,"score":125,"percentile":371},"2026-01-26",0.66358,{"date":373,"score":125,"percentile":374},"2026-01-27",0.66367,{"date":376,"score":125,"percentile":377},"2026-01-28",0.66379,{"date":379,"score":125,"percentile":380},"2026-01-29",0.6638,{"date":382,"score":125,"percentile":383},"2026-01-30",0.66391,{"date":385,"score":125,"percentile":386},"2026-01-31",0.66394,{"date":388,"score":125,"percentile":389},"2026-02-01",0.66538,[391,396],{"source":71,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":392,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":393,"vectorString":72,"impactScore":394,"exploitabilityScore":395},"MEDIUM",6,5.6,{"source":77,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":397,"cvss_v4_0":9},{"baseScore":69,"baseSeverity":393,"vectorString":72,"impactScore":394,"exploitabilityScore":395},[399],{"ecosystem":9,"name":400,"vendor":9,"product":400,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":401},"OpenSSL",[402,409,413],{"version":403,"is_range":404,"range_type":71,"version_start":405,"version_start_type":406,"version_end":407,"version_end_type":408,"fixed_in":9},"gte3.0.0_lt3.0.13",true,"3.0.0","including","3.0.13","excluding",{"version":410,"is_range":404,"range_type":71,"version_start":411,"version_start_type":406,"version_end":412,"version_end_type":408,"fixed_in":9},"gte3.1.0_lt3.1.5","3.1.0","3.1.5",{"version":414,"is_range":404,"range_type":71,"version_start":415,"version_start_type":406,"version_end":416,"version_end_type":408,"fixed_in":9},">= 3.2.0, \u003C 3.2.1","3.2.0","3.2.1"]