Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/jboss-security-spi@1:2.0.4-6.SP8.1.ep5?arch=el4

Type rpm

Namespace redhat

Name jboss-security-spi

Version 1:2.0.4-6.SP8.1.ep5

Qualifiers

arch	el4

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-gm75-7u37-qbge

vulnerability_id

VCID-gm75-7u37-qbge

summary

OpenID4Java does not verify that Attribute Exchange (AX) information is signed
message/ax/AxMessage.java in OpenID4Java before 0.9.6 final, as used in JBoss Enterprise Application Platform 5.1 before 5.1.2, Step2, Kay Framework before 1.0.2, and possibly other products does not verify that Attribute Exchange (AX) information is signed, which allows remote attackers to modify potentially sensitive AX information without detection via a man-in-the-middle (MITM) attack.

references

reference_url

http://openid.net/2011/05/05/attribute-exchange-security-alert

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://openid.net/2011/05/05/attribute-exchange-security-alert

reference_url

http://rhn.redhat.com/errata/RHSA-2012-0441.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2012-0441.html

reference_url

http://rhn.redhat.com/errata/RHSA-2012-0519.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2012-0519.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4314.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4314.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4314

reference_id

reference_type

scores

value	0.00555
scoring_system	epss
scoring_elements	0.68133
published_at	2026-04-09T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68089
published_at	2026-04-04T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68067
published_at	2026-04-07T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68118
published_at	2026-04-08T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68157
published_at	2026-04-11T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.6816
published_at	2026-04-18T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68147
published_at	2026-04-16T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68111
published_at	2026-04-13T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68049
published_at	2026-04-01T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68071
published_at	2026-04-02T12:55:00Z

value	0.00555
scoring_system	epss
scoring_elements	0.68144
published_at	2026-04-12T12:55:00Z

value	0.00571
scoring_system	epss
scoring_elements	0.68704
published_at	2026-04-26T12:55:00Z

value	0.00571
scoring_system	epss
scoring_elements	0.6871
published_at	2026-04-29T12:55:00Z

value	0.00783
scoring_system	epss
scoring_elements	0.7377
published_at	2026-04-21T12:55:00Z

value	0.00783
scoring_system	epss
scoring_elements	0.73804
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4314

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4314
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4314

reference_url

https://github.com/jbufu/openid4java

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/jbufu/openid4java

reference_url

https://issues.jboss.org/browse/JBEPP-1368

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://issues.jboss.org/browse/JBEPP-1368

reference_url

https://issues.jboss.org/browse/SOA-3597

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://issues.jboss.org/browse/SOA-3597

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-4314

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2011-4314

reference_url

https://web.archive.org/web/20201207151157/http://securitytracker.com/id?1026400

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20201207151157/http://securitytracker.com/id?1026400

reference_url

http://www.openwall.com/lists/oss-security/2011/11/16/1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2011/11/16/1

reference_url

http://www.openwall.com/lists/oss-security/2011/11/17/1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2011/11/17/1

reference_url

http://www.redhat.com/support/errata/RHSA-2011-1804.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.redhat.com/support/errata/RHSA-2011-1804.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=754386
reference_id	754386
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=754386

reference_url

https://github.com/advisories/GHSA-j473-c3rr-rx9p

reference_id

GHSA-j473-c3rr-rx9p

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-j473-c3rr-rx9p

reference_url	https://access.redhat.com/errata/RHSA-2011:1798
reference_id	RHSA-2011:1798
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1798

reference_url	https://access.redhat.com/errata/RHSA-2011:1799
reference_id	RHSA-2011:1799
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1799

reference_url	https://access.redhat.com/errata/RHSA-2011:1800
reference_id	RHSA-2011:1800
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1800

reference_url	https://access.redhat.com/errata/RHSA-2011:1802
reference_id	RHSA-2011:1802
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1802

reference_url	https://access.redhat.com/errata/RHSA-2011:1803
reference_id	RHSA-2011:1803
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1803

reference_url	https://access.redhat.com/errata/RHSA-2011:1805
reference_id	RHSA-2011:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1805

reference_url	https://access.redhat.com/errata/RHSA-2011:1806
reference_id	RHSA-2011:1806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1806

reference_url	https://access.redhat.com/errata/RHSA-2012:0378
reference_id	RHSA-2012:0378
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0378

fixed_packages

aliases

CVE-2011-4314, GHSA-j473-c3rr-rx9p

risk_score

3.1

exploitability

0.5

weighted_severity

6.2

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-gm75-7u37-qbge

url

VCID-tuug-gpqe-ybh8

vulnerability_id

VCID-tuug-gpqe-ybh8

summary

Invoker servlets authentication bypass (HTTP verb tampering)

references

reference_url	http://rhn.redhat.com/errata/RHSA-2011-1456.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2011-1456.html

reference_url	http://rhn.redhat.com/errata/RHSA-2011-1798.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2011-1798.html

reference_url	http://rhn.redhat.com/errata/RHSA-2011-1799.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2011-1799.html

reference_url	http://rhn.redhat.com/errata/RHSA-2011-1800.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2011-1800.html

reference_url	http://rhn.redhat.com/errata/RHSA-2011-1805.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2011-1805.html

reference_url	http://rhn.redhat.com/errata/RHSA-2011-1822.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2011-1822.html

reference_url	http://rhn.redhat.com/errata/RHSA-2012-0091.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2012-0091.html

reference_url	http://rhn.redhat.com/errata/RHSA-2012-1028.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2012-1028.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4085.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4085.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4085

reference_id

reference_type

scores

value	0.00719
scoring_system	epss
scoring_elements	0.72544
published_at	2026-04-29T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72409
published_at	2026-04-01T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72415
published_at	2026-04-02T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72432
published_at	2026-04-04T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.7241
published_at	2026-04-07T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72448
published_at	2026-04-08T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72461
published_at	2026-04-09T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72484
published_at	2026-04-11T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72466
published_at	2026-04-12T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72456
published_at	2026-04-13T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72498
published_at	2026-04-16T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72507
published_at	2026-04-18T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72496
published_at	2026-04-21T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72539
published_at	2026-04-24T12:55:00Z

value	0.00719
scoring_system	epss
scoring_elements	0.72546
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4085

reference_url	http://secunia.com/advisories/47169
reference_id
reference_type
scores
url	http://secunia.com/advisories/47169

reference_url	http://secunia.com/advisories/47866
reference_id
reference_type
scores
url	http://secunia.com/advisories/47866

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=750422
reference_id	750422
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=750422

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform::::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_application_platform::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.2.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.1:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_brms_platform::::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_brms_platform::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_brms_platform::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_portal_platform::::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_portal_platform::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_portal_platform::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform::::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp01::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp01::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp01::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp02::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp02::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp02::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp03::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp03::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp03::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp04::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp04::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp04::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp05::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp05::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:cp05::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:tp02::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:tp02::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.2.0:tp02::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp01::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp01::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp01::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp02::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp02::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp02::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp03::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp03::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp03::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp04::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp04::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp04::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp05::::::
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp05::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:4.3.0:cp05::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.1:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.2:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.0.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.1.0:::::::*
reference_id	cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_enterprise_soa_platform:5.1.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-4085

reference_id

CVE-2011-4085

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2011-4085

reference_url	https://access.redhat.com/errata/RHSA-2011:1456
reference_id	RHSA-2011:1456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1456

reference_url	https://access.redhat.com/errata/RHSA-2011:1798
reference_id	RHSA-2011:1798
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1798

reference_url	https://access.redhat.com/errata/RHSA-2011:1799
reference_id	RHSA-2011:1799
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1799

reference_url	https://access.redhat.com/errata/RHSA-2011:1800
reference_id	RHSA-2011:1800
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1800

reference_url	https://access.redhat.com/errata/RHSA-2011:1805
reference_id	RHSA-2011:1805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1805

reference_url	https://access.redhat.com/errata/RHSA-2011:1822
reference_id	RHSA-2011:1822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1822

reference_url	https://access.redhat.com/errata/RHSA-2012:0091
reference_id	RHSA-2012:0091
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0091

reference_url	https://access.redhat.com/errata/RHSA-2012:1028
reference_id	RHSA-2012:1028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:1028

fixed_packages

aliases

CVE-2011-4085

risk_score

3.0

exploitability

0.5

weighted_severity

6.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-tuug-gpqe-ybh8

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-security-spi@1:2.0.4-6.SP8.1.ep5%3Farch=el4

Package Instance