Package Instance

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0873.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0873.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0874.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0874.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0875.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0875.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0876.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0876.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0943.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0943.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-1028.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-1028.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-1143.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-1143.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2012-5575

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5575.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5575.json

reference_url

reference_id

reference_type

scores

value	0.09505
scoring_system	epss
scoring_elements	0.92845
published_at	2026-04-16T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92807
published_at	2026-04-01T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92814
published_at	2026-04-02T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92819
published_at	2026-04-04T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92817
published_at	2026-04-07T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92827
published_at	2026-04-08T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.9283
published_at	2026-04-09T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92835
published_at	2026-04-11T12:55:00Z

value	0.09505
scoring_system	epss
scoring_elements	0.92834
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-5575

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=880443

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=880443

reference_url

https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E

reference_url

http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility

reference_url	http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility/
reference_id
reference_type
scores
url	http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility/

reference_url

http://www.securityfocus.com/bid/60043

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/60043

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2012-5575

reference_id

CVE-2012-5575

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2012-5575

reference_url

http://cxf.apache.org/cve-2012-5575.html

reference_id

CVE-2012-5575.HTML

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://cxf.apache.org/cve-2012-5575.html

reference_url

https://github.com/advisories/GHSA-7v5v-9v8r-w864

reference_id

GHSA-7v5v-9v8r-w864

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-7v5v-9v8r-w864

reference_url	https://access.redhat.com/errata/RHSA-2013:0833
reference_id	RHSA-2013:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0833

reference_url	https://access.redhat.com/errata/RHSA-2013:0834
reference_id	RHSA-2013:0834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0834

reference_url	https://access.redhat.com/errata/RHSA-2013:0839
reference_id	RHSA-2013:0839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0839

reference_url	https://access.redhat.com/errata/RHSA-2013:0873
reference_id	RHSA-2013:0873
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0873

reference_url	https://access.redhat.com/errata/RHSA-2013:0874
reference_id	RHSA-2013:0874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0874

reference_url	https://access.redhat.com/errata/RHSA-2013:0875
reference_id	RHSA-2013:0875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0875

reference_url	https://access.redhat.com/errata/RHSA-2013:0876
reference_id	RHSA-2013:0876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0876

reference_url	https://access.redhat.com/errata/RHSA-2013:0943
reference_id	RHSA-2013:0943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0943

reference_url	https://access.redhat.com/errata/RHSA-2013:1006
reference_id	RHSA-2013:1006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1006

reference_url	https://access.redhat.com/errata/RHSA-2013:1028
reference_id	RHSA-2013:1028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1028

reference_url	https://access.redhat.com/errata/RHSA-2013:1437
reference_id	RHSA-2013:1437
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1437

fixed_packages

aliases

CVE-2012-5575, GHSA-7v5v-9v8r-w864

risk_score

3.1

exploitability

0.5

weighted_severity

6.2

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-58f1-hrv1-gqgp

url VCID-jtbd-bbrs-vbct

vulnerability_id VCID-jtbd-bbrs-vbct

summary JBoss: custom authorization module implementations shared between applications

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4572.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4572.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-4572

reference_id

reference_type

scores

value	0.00153
scoring_system	epss
scoring_elements	0.35979
published_at	2026-04-01T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36173
published_at	2026-04-02T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36203
published_at	2026-04-04T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36038
published_at	2026-04-07T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36088
published_at	2026-04-16T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36106
published_at	2026-04-09T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36112
published_at	2026-04-11T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36074
published_at	2026-04-12T12:55:00Z

value	0.00153
scoring_system	epss
scoring_elements	0.36048
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4572

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=872059
reference_id	872059
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=872059

reference_url	https://access.redhat.com/errata/RHSA-2013:0833
reference_id	RHSA-2013:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0833

reference_url	https://access.redhat.com/errata/RHSA-2013:0834
reference_id	RHSA-2013:0834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0834

reference_url	https://access.redhat.com/errata/RHSA-2013:0839
reference_id	RHSA-2013:0839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0839

reference_url	https://access.redhat.com/errata/RHSA-2013:1437
reference_id	RHSA-2013:1437
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1437

fixed_packages

aliases CVE-2012-4572

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jtbd-bbrs-vbct

url VCID-man2-98t1-myav

vulnerability_id VCID-man2-98t1-myav

summary Web: jsessionid exposed via encoded url when using cookie based session tracking

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4529.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4529.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-4529

reference_id

reference_type

scores

value	0.00563
scoring_system	epss
scoring_elements	0.68303
published_at	2026-04-01T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68322
published_at	2026-04-02T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68342
published_at	2026-04-04T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68318
published_at	2026-04-07T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68369
published_at	2026-04-08T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68386
published_at	2026-04-09T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68413
published_at	2026-04-11T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68401
published_at	2026-04-12T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68368
published_at	2026-04-13T12:55:00Z

value	0.00563
scoring_system	epss
scoring_elements	0.68406
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4529

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=868202
reference_id	868202
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=868202

reference_url	https://access.redhat.com/errata/RHSA-2013:0833
reference_id	RHSA-2013:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0833

reference_url	https://access.redhat.com/errata/RHSA-2013:0834
reference_id	RHSA-2013:0834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0834

reference_url	https://access.redhat.com/errata/RHSA-2013:0839
reference_id	RHSA-2013:0839
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0839

reference_url	https://access.redhat.com/errata/RHSA-2013:1437
reference_id	RHSA-2013:1437
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1437

fixed_packages

aliases CVE-2012-4529

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-man2-98t1-myav

url

VCID-ryha-ndms-afbn

vulnerability_id

VCID-ryha-ndms-afbn

summary

java/org/apache/catalina/authenticator/FormAuthenticator.java in the form authentication feature in Apache Tomcat 6.0.21 through 6.0.36 and 7.x before 7.0.33 does not properly handle the relationships between authentication requirements and sessions, which allows remote attackers to inject a request into a session by sending this request during completion of the login form, a variant of a session fixation attack.

references

reference_url

http://archives.neohapsis.com/archives/bugtraq/2013-05/0041.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://archives.neohapsis.com/archives/bugtraq/2013-05/0041.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0964.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0964.html

reference_url

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url