Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/eap7-wildfly-http-client@1.0.21-1.Final_redhat_00001.1?arch=el7eap
Typerpm
Namespaceredhat
Nameeap7-wildfly-http-client
Version1.0.21-1.Final_redhat_00001.1
Qualifiers
arch el7eap
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-1bfp-5ub3-dqbr
vulnerability_id VCID-1bfp-5ub3-dqbr
summary wildfly: EJB SessionOpenInvocations may not be removed properly after a response is received causing Denial of Service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14307.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14307.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-14307
reference_id
reference_type
scores
0
value 0.00279
scoring_system epss
scoring_elements 0.5134
published_at 2026-04-16T12:55:00Z
1
value 0.00279
scoring_system epss
scoring_elements 0.51334
published_at 2026-04-11T12:55:00Z
2
value 0.00279
scoring_system epss
scoring_elements 0.51313
published_at 2026-04-12T12:55:00Z
3
value 0.00279
scoring_system epss
scoring_elements 0.513
published_at 2026-04-13T12:55:00Z
4
value 0.00279
scoring_system epss
scoring_elements 0.51239
published_at 2026-04-07T12:55:00Z
5
value 0.00279
scoring_system epss
scoring_elements 0.51294
published_at 2026-04-08T12:55:00Z
6
value 0.00279
scoring_system epss
scoring_elements 0.5129
published_at 2026-04-09T12:55:00Z
7
value 0.00401
scoring_system epss
scoring_elements 0.60731
published_at 2026-04-02T12:55:00Z
8
value 0.00401
scoring_system epss
scoring_elements 0.6076
published_at 2026-04-04T12:55:00Z
9
value 0.00401
scoring_system epss
scoring_elements 0.60657
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-14307
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1851327
reference_id 1851327
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1851327
fixed_packages
aliases CVE-2020-14307
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1bfp-5ub3-dqbr
1
url VCID-mapy-1mup-wfgx
vulnerability_id VCID-mapy-1mup-wfgx
summary 
Wildfly Unsafe Deserialization Vulnerability
A vulnerability was found in Wildfly in versions before 20.0.0.Final, where a remote deserialization attack is possible in the Enterprise Application Beans(EJB) due to lack of validation/filtering capabilities in wildfly.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10740.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10740.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-10740
reference_id
reference_type
scores
0
value 0.00373
scoring_system epss
scoring_elements 0.59029
published_at 2026-04-16T12:55:00Z
1
value 0.00373
scoring_system epss
scoring_elements 0.58966
published_at 2026-04-02T12:55:00Z
2
value 0.00373
scoring_system epss
scoring_elements 0.58988
published_at 2026-04-04T12:55:00Z
3
value 0.00373
scoring_system epss
scoring_elements 0.58954
published_at 2026-04-07T12:55:00Z
4
value 0.00373
scoring_system epss
scoring_elements 0.59006
published_at 2026-04-08T12:55:00Z
5
value 0.00373
scoring_system epss
scoring_elements 0.59013
published_at 2026-04-12T12:55:00Z
6
value 0.00373
scoring_system epss
scoring_elements 0.59032
published_at 2026-04-11T12:55:00Z
7
value 0.00373
scoring_system epss
scoring_elements 0.58995
published_at 2026-04-13T12:55:00Z
8
value 0.00373
scoring_system epss
scoring_elements 0.58891
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-10740
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10740
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10740
3
reference_url https://github.com/wildfly/wildfly
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/wildfly/wildfly
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-10740
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-10740
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1834512
reference_id 1834512
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1834512
6
reference_url https://github.com/advisories/GHSA-vrmw-2xhq-hrmp
reference_id GHSA-vrmw-2xhq-hrmp
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vrmw-2xhq-hrmp
7
reference_url https://access.redhat.com/errata/RHSA-2020:3585
reference_id RHSA-2020:3585
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3585
8
reference_url https://access.redhat.com/errata/RHSA-2020:5568
reference_id RHSA-2020:5568
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:5568
fixed_packages
aliases CVE-2020-10740, GHSA-vrmw-2xhq-hrmp
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mapy-1mup-wfgx
2
url VCID-zea8-w4br-6qas
vulnerability_id VCID-zea8-w4br-6qas
summary 
Wildfly EJB Client causes DoS
A flaw was discovered in Wildfly's EJB Client as shipped with Red Hat JBoss EAP 7, where some specific EJB transaction objects may get accumulated over the time and can cause services to slow down and eventually unavailable. An attacker can take advantage and cause denial of service attack and make services unavailable.
references
0
reference_url https://access.redhat.com/errata/RHSA-2020:3141
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3141
1
reference_url https://access.redhat.com/errata/RHSA-2020:3142
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3142
2
reference_url https://access.redhat.com/errata/RHSA-2020:3143
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3143
3
reference_url https://access.redhat.com/errata/RHSA-2020:3144
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3144
4
reference_url https://access.redhat.com/errata/RHSA-2020:3461
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3461
5
reference_url https://access.redhat.com/errata/RHSA-2020:3462
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3462
6
reference_url https://access.redhat.com/errata/RHSA-2020:3463
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3463
7
reference_url https://access.redhat.com/errata/RHSA-2020:3464
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3464
8
reference_url https://access.redhat.com/errata/RHSA-2020:3501
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3501
9
reference_url https://access.redhat.com/errata/RHSA-2020:3539
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3539
10
reference_url https://access.redhat.com/errata/RHSA-2020:3637
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3637
11
reference_url https://access.redhat.com/errata/RHSA-2020:3638
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3638
12
reference_url https://access.redhat.com/errata/RHSA-2020:3639
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3639
13
reference_url https://access.redhat.com/errata/RHSA-2020:3642
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3642
14
reference_url https://access.redhat.com/errata/RHSA-2020:3817
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:3817
15
reference_url https://access.redhat.com/errata/RHSA-2021:3140
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2021:3140
16
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14297.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14297.json
17
reference_url https://access.redhat.com/security/cve/CVE-2020-14297
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2020-14297
18
reference_url https://access.redhat.com/solutions/21906
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/solutions/21906
19
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-14297
reference_id
reference_type
scores
0
value 0.00253
scoring_system epss
scoring_elements 0.4867
published_at 2026-04-16T12:55:00Z
1
value 0.00253
scoring_system epss
scoring_elements 0.48568
published_at 2026-04-07T12:55:00Z
2
value 0.00253
scoring_system epss
scoring_elements 0.48622
published_at 2026-04-08T12:55:00Z
3
value 0.00253
scoring_system epss
scoring_elements 0.48617
published_at 2026-04-09T12:55:00Z
4
value 0.00253
scoring_system epss
scoring_elements 0.48635
published_at 2026-04-11T12:55:00Z
5
value 0.00253
scoring_system epss
scoring_elements 0.48608
published_at 2026-04-12T12:55:00Z
6
value 0.00253
scoring_system epss
scoring_elements 0.48621
published_at 2026-04-13T12:55:00Z
7
value 0.00371
scoring_system epss
scoring_elements 0.58899
published_at 2026-04-04T12:55:00Z
8
value 0.00371
scoring_system epss
scoring_elements 0.58877
published_at 2026-04-02T12:55:00Z
9
value 0.00371
scoring_system epss
scoring_elements 0.58802
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-14297
20
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1853595
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1853595
21
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14297
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-15T17:09:41Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14297
22
reference_url https://github.com/wildfly/jboss-ejb-client
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/wildfly/jboss-ejb-client
23
reference_url https://github.com/wildfly/jboss-ejb-client/commit/e5f8e4b591f1698a53adc7e430584ca2a8fc9f1b
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/wildfly/jboss-ejb-client/commit/e5f8e4b591f1698a53adc7e430584ca2a8fc9f1b
24
reference_url https://github.com/wildfly/jboss-ejb-client/commits/4.0.34.Final
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/wildfly/jboss-ejb-client/commits/4.0.34.Final
25
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-14297
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-14297
26
reference_url https://github.com/advisories/GHSA-qcch-9268-59jw
reference_id GHSA-qcch-9268-59jw
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qcch-9268-59jw
fixed_packages
aliases CVE-2020-14297, GHSA-qcch-9268-59jw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zea8-w4br-6qas
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-http-client@1.0.21-1.Final_redhat_00001.1%3Farch=el7eap