Hello, According to a py-suds community fork maintainer, the CVE-2013-2217 should be fixed long time ago and the current CVE entry are incorrect. https://github.com/suds-community/suds/issues/94
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=5097c655982355ebc06838d1f710904888e51194 commit 5097c655982355ebc06838d1f710904888e51194 Author: Po-Chuan Hsieh <sunpoet@FreeBSD.org> AuthorDate: 2023-07-09 10:32:01 +0000 Commit: Po-Chuan Hsieh <sunpoet@FreeBSD.org> CommitDate: 2023-07-09 10:32:01 +0000 security/vuxml: Fix py-suds entry (b31f7029-817c-4c1f-b7d3-252de5283393) PR: 272346 Reported by: David M. <root@network-dev.org> Reference: https://github.com/suds-community/suds/issues/94 https://github.com/advisories/GHSA-vpqp-hx68-p2wx security/vuxml/vuln/2023.xml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-)