Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/jboss-messaging@1.4.0-3.SP3_CP09.4.ep1?arch=el5
Typerpm
Namespaceredhat
Namejboss-messaging
Version1.4.0-3.SP3_CP09.4.ep1
Qualifiers
arch el5
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-2gpd-vwgb-67cn
vulnerability_id VCID-2gpd-vwgb-67cn
summary XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 and JDK and JRE 5.0 before Update 20, and in other products, allows remote attackers to cause a denial of service (infinite loop and application hang) via malformed XML input, as demonstrated by the Codenomicon XML fuzzing framework.
references
0
reference_url http://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00001.html
2
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
3
reference_url http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html
4
reference_url http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
5
reference_url http://marc.info/?l=bugtraq&m=125787273209737&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=125787273209737&w=2
6
reference_url http://rhn.redhat.com/errata/RHSA-2012-1232.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2012-1232.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2012-1537.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2012-1537.html
8
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2625.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2625.json
9
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-2625
reference_id
reference_type
scores
0
value 0.01246
scoring_system epss
scoring_elements 0.79323
published_at 2026-04-18T12:55:00Z
1
value 0.01246
scoring_system epss
scoring_elements 0.79326
published_at 2026-04-16T12:55:00Z
2
value 0.01562
scoring_system epss
scoring_elements 0.81432
published_at 2026-04-02T12:55:00Z
3
value 0.01562
scoring_system epss
scoring_elements 0.81422
published_at 2026-04-01T12:55:00Z
4
value 0.01562
scoring_system epss
scoring_elements 0.81453
published_at 2026-04-04T12:55:00Z
5
value 0.01562
scoring_system epss
scoring_elements 0.81451
published_at 2026-04-07T12:55:00Z
6
value 0.01562
scoring_system epss
scoring_elements 0.81479
published_at 2026-04-08T12:55:00Z
7
value 0.01562
scoring_system epss
scoring_elements 0.81485
published_at 2026-04-09T12:55:00Z
8
value 0.01562
scoring_system epss
scoring_elements 0.81506
published_at 2026-04-11T12:55:00Z
9
value 0.01746
scoring_system epss
scoring_elements 0.82541
published_at 2026-04-12T12:55:00Z
10
value 0.01746
scoring_system epss
scoring_elements 0.82536
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-2625
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=512921
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=512921
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2625
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2625
12
reference_url http://secunia.com/advisories/36162
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/36162
13
reference_url http://secunia.com/advisories/36176
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/36176
14
reference_url http://secunia.com/advisories/36180
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/36180
15
reference_url http://secunia.com/advisories/36199
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/36199
16
reference_url http://secunia.com/advisories/37300
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/37300
17
reference_url http://secunia.com/advisories/37460
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/37460
18
reference_url http://secunia.com/advisories/37671
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/37671
19
reference_url http://secunia.com/advisories/37754
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/37754
20
reference_url http://secunia.com/advisories/38231
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/38231
21
reference_url http://secunia.com/advisories/38342
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/38342
22
reference_url http://secunia.com/advisories/43300
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/43300
23
reference_url http://secunia.com/advisories/50549
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://secunia.com/advisories/50549
24
reference_url https://github.com/apache/xerces2-j/commit/0bdf77af1d4fd26ec2e630fb6d12e2dfa77bc12b
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/xerces2-j/commit/0bdf77af1d4fd26ec2e630fb6d12e2dfa77bc12b
25
reference_url http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.486026
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.486026
26
reference_url https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E
27
reference_url https://nvd.nist.gov/vuln/detail/CVE-2009-2625
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2009-2625
28
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8520
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8520
29
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9356
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9356
30
reference_url https://rhn.redhat.com/errata/RHSA-2009-1199.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1199.html
31
reference_url https://rhn.redhat.com/errata/RHSA-2009-1200.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1200.html
32
reference_url https://rhn.redhat.com/errata/RHSA-2009-1201.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1201.html
33
reference_url https://rhn.redhat.com/errata/RHSA-2009-1636.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1636.html
34
reference_url https://rhn.redhat.com/errata/RHSA-2009-1637.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1637.html
35
reference_url https://rhn.redhat.com/errata/RHSA-2009-1649.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1649.html
36
reference_url https://rhn.redhat.com/errata/RHSA-2009-1650.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1650.html
37
reference_url https://snyk.io/vuln/SNYK-JAVA-XERCES-32014
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://snyk.io/vuln/SNYK-JAVA-XERCES-32014
38
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-21-125136-16-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://sunsolve.sun.com/search/document.do?assetkey=1-21-125136-16-1
39
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-66-263489-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://sunsolve.sun.com/search/document.do?assetkey=1-66-263489-1
40
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-66-272209-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://sunsolve.sun.com/search/document.do?assetkey=1-66-272209-1
41
reference_url http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021506.1-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021506.1-1
42
reference_url http://svn.apache.org/viewvc/xerces/java/trunk/src/org/apache/xerces/impl/XMLScanner.java?r1=572055&r2=787352&pathrev=787353&diff_format=h
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc/xerces/java/trunk/src/org/apache/xerces/impl/XMLScanner.java?r1=572055&r2=787352&pathrev=787353&diff_format=h
43
reference_url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00310.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00310.html
44
reference_url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00325.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00325.html
45
reference_url http://www.cert.fi/en/reports/2009/vulnerability2009085.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.cert.fi/en/reports/2009/vulnerability2009085.html
46
reference_url http://www.codenomicon.com/labs/xml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.codenomicon.com/labs/xml
47
reference_url http://www.codenomicon.com/labs/xml/
reference_id
reference_type
scores
url http://www.codenomicon.com/labs/xml/
48
reference_url http://www.debian.org/security/2010/dsa-1984
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2010/dsa-1984
49
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2009:209
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.mandriva.com/security/advisories?name=MDVSA-2009:209
50
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2011:108
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.mandriva.com/security/advisories?name=MDVSA-2011:108
51
reference_url http://www.networkworld.com/columnists/2009/080509-xml-flaw.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.networkworld.com/columnists/2009/080509-xml-flaw.html
52
reference_url http://www.openwall.com/lists/oss-security/2009/09/06/1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2009/09/06/1
53
reference_url http://www.openwall.com/lists/oss-security/2009/10/22/9
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2009/10/22/9
54
reference_url http://www.openwall.com/lists/oss-security/2009/10/23/6
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2009/10/23/6
55
reference_url http://www.openwall.com/lists/oss-security/2009/10/26/3
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.openwall.com/lists/oss-security/2009/10/26/3
56
reference_url http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html
57
reference_url http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html
58
reference_url http://www.redhat.com/support/errata/RHSA-2009-1615.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2009-1615.html
59
reference_url http://www.redhat.com/support/errata/RHSA-2011-0858.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.redhat.com/support/errata/RHSA-2011-0858.html
60
reference_url http://www.securityfocus.com/archive/1/507985/100/0/threaded
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/archive/1/507985/100/0/threaded
61
reference_url http://www.securityfocus.com/bid/35958
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/35958
62
reference_url http://www.securitytracker.com/id?1022680
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.securitytracker.com/id?1022680
63
reference_url http://www.ubuntu.com/usn/USN-890-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.ubuntu.com/usn/USN-890-1
64
reference_url http://www.us-cert.gov/cas/techalerts/TA09-294A.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.us-cert.gov/cas/techalerts/TA09-294A.html
65
reference_url http://www.us-cert.gov/cas/techalerts/TA10-012A.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.us-cert.gov/cas/techalerts/TA10-012A.html
66
reference_url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vmware.com/security/advisories/VMSA-2009-0016.html
67
reference_url http://www.vupen.com/english/advisories/2009/2543
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vupen.com/english/advisories/2009/2543
68
reference_url http://www.vupen.com/english/advisories/2009/3316
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vupen.com/english/advisories/2009/3316
69
reference_url http://www.vupen.com/english/advisories/2011/0359
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.vupen.com/english/advisories/2011/0359
70
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=548358
reference_id 548358
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=548358
71
reference_url https://bugzilla.redhat.com/CVE-2009-2625
reference_id CVE-2009-2625
reference_type
scores
url https://bugzilla.redhat.com/CVE-2009-2625
72
reference_url https://github.com/advisories/GHSA-334p-wv2m-w3vp
reference_id GHSA-334p-wv2m-w3vp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-334p-wv2m-w3vp
73
reference_url https://access.redhat.com/errata/RHSA-2009:1199
reference_id RHSA-2009:1199
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1199
74
reference_url https://access.redhat.com/errata/RHSA-2009:1200
reference_id RHSA-2009:1200
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1200
75
reference_url https://access.redhat.com/errata/RHSA-2009:1201
reference_id RHSA-2009:1201
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1201
76
reference_url https://access.redhat.com/errata/RHSA-2009:1236
reference_id RHSA-2009:1236
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1236
77
reference_url https://access.redhat.com/errata/RHSA-2009:1505
reference_id RHSA-2009:1505
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1505
78
reference_url https://access.redhat.com/errata/RHSA-2009:1551
reference_id RHSA-2009:1551
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1551
79
reference_url https://access.redhat.com/errata/RHSA-2009:1582
reference_id RHSA-2009:1582
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1582
80
reference_url https://access.redhat.com/errata/RHSA-2009:1615
reference_id RHSA-2009:1615
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1615
81
reference_url https://access.redhat.com/errata/RHSA-2009:1636
reference_id RHSA-2009:1636
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1636
82
reference_url https://access.redhat.com/errata/RHSA-2009:1637
reference_id RHSA-2009:1637
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1637
83
reference_url https://access.redhat.com/errata/RHSA-2009:1649
reference_id RHSA-2009:1649
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1649
84
reference_url https://access.redhat.com/errata/RHSA-2009:1650
reference_id RHSA-2009:1650
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1650
85
reference_url https://access.redhat.com/errata/RHSA-2009:1662
reference_id RHSA-2009:1662
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1662
86
reference_url https://access.redhat.com/errata/RHSA-2010:0043
reference_id RHSA-2010:0043
reference_type
scores
url https://access.redhat.com/errata/RHSA-2010:0043
87
reference_url https://access.redhat.com/errata/RHSA-2011:0858
reference_id RHSA-2011:0858
reference_type
scores
url https://access.redhat.com/errata/RHSA-2011:0858
88
reference_url https://access.redhat.com/errata/RHSA-2012:0725
reference_id RHSA-2012:0725
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:0725
89
reference_url https://access.redhat.com/errata/RHSA-2012:1232
reference_id RHSA-2012:1232
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1232
90
reference_url https://access.redhat.com/errata/RHSA-2012:1537
reference_id RHSA-2012:1537
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1537
91
reference_url https://access.redhat.com/errata/RHSA-2013:0763
reference_id RHSA-2013:0763
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0763
92
reference_url https://usn.ubuntu.com/814-1/
reference_id USN-814-1
reference_type
scores
url https://usn.ubuntu.com/814-1/
93
reference_url https://usn.ubuntu.com/890-1/
reference_id USN-890-1
reference_type
scores
url https://usn.ubuntu.com/890-1/
fixed_packages
aliases CVE-2009-2625, GHSA-334p-wv2m-w3vp
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2gpd-vwgb-67cn
1
url VCID-apuu-uzfk-vfe8
vulnerability_id VCID-apuu-uzfk-vfe8
summary JBoss Application Server Web Console XSS
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2405.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2405.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-2405
reference_id
reference_type
scores
0
value 0.00776
scoring_system epss
scoring_elements 0.73561
published_at 2026-04-01T12:55:00Z
1
value 0.00776
scoring_system epss
scoring_elements 0.7357
published_at 2026-04-02T12:55:00Z
2
value 0.00776
scoring_system epss
scoring_elements 0.73594
published_at 2026-04-04T12:55:00Z
3
value 0.00776
scoring_system epss
scoring_elements 0.73566
published_at 2026-04-07T12:55:00Z
4
value 0.00776
scoring_system epss
scoring_elements 0.73602
published_at 2026-04-08T12:55:00Z
5
value 0.00776
scoring_system epss
scoring_elements 0.73615
published_at 2026-04-09T12:55:00Z
6
value 0.00776
scoring_system epss
scoring_elements 0.73638
published_at 2026-04-11T12:55:00Z
7
value 0.00776
scoring_system epss
scoring_elements 0.7362
published_at 2026-04-12T12:55:00Z
8
value 0.00776
scoring_system epss
scoring_elements 0.73611
published_at 2026-04-13T12:55:00Z
9
value 0.00776
scoring_system epss
scoring_elements 0.73655
published_at 2026-04-16T12:55:00Z
10
value 0.00776
scoring_system epss
scoring_elements 0.73664
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-2405
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=510023
reference_id 510023
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=510023
3
reference_url https://access.redhat.com/errata/RHSA-2009:1636
reference_id RHSA-2009:1636
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1636
4
reference_url https://access.redhat.com/errata/RHSA-2009:1637
reference_id RHSA-2009:1637
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1637
5
reference_url https://access.redhat.com/errata/RHSA-2009:1649
reference_id RHSA-2009:1649
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1649
6
reference_url https://access.redhat.com/errata/RHSA-2009:1650
reference_id RHSA-2009:1650
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1650
fixed_packages
aliases CVE-2009-2405
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-apuu-uzfk-vfe8
2
url VCID-bbpb-dqxb-x3ef
vulnerability_id VCID-bbpb-dqxb-x3ef
summary jbossas JMX-Console cross-site-scripting in filter parameter
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1380.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1380.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-1380
reference_id
reference_type
scores
0
value 0.00604
scoring_system epss
scoring_elements 0.69522
published_at 2026-04-01T12:55:00Z
1
value 0.00604
scoring_system epss
scoring_elements 0.69533
published_at 2026-04-02T12:55:00Z
2
value 0.00604
scoring_system epss
scoring_elements 0.69549
published_at 2026-04-04T12:55:00Z
3
value 0.00604
scoring_system epss
scoring_elements 0.69528
published_at 2026-04-07T12:55:00Z
4
value 0.00604
scoring_system epss
scoring_elements 0.69578
published_at 2026-04-08T12:55:00Z
5
value 0.00604
scoring_system epss
scoring_elements 0.69595
published_at 2026-04-09T12:55:00Z
6
value 0.00604
scoring_system epss
scoring_elements 0.69617
published_at 2026-04-11T12:55:00Z
7
value 0.00604
scoring_system epss
scoring_elements 0.69602
published_at 2026-04-12T12:55:00Z
8
value 0.00604
scoring_system epss
scoring_elements 0.69588
published_at 2026-04-13T12:55:00Z
9
value 0.00604
scoring_system epss
scoring_elements 0.69627
published_at 2026-04-16T12:55:00Z
10
value 0.00604
scoring_system epss
scoring_elements 0.69636
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-1380
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=511224
reference_id 511224
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=511224
3
reference_url https://access.redhat.com/errata/RHSA-2009:1636
reference_id RHSA-2009:1636
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1636
4
reference_url https://access.redhat.com/errata/RHSA-2009:1637
reference_id RHSA-2009:1637
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1637
5
reference_url https://access.redhat.com/errata/RHSA-2009:1649
reference_id RHSA-2009:1649
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1649
6
reference_url https://access.redhat.com/errata/RHSA-2009:1650
reference_id RHSA-2009:1650
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1650
fixed_packages
aliases CVE-2009-1380
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bbpb-dqxb-x3ef
3
url VCID-wz7p-atjg-q7az
vulnerability_id VCID-wz7p-atjg-q7az
summary JBoss EAP Twiddle logs the JMX password
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3554.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3554.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-3554
reference_id
reference_type
scores
0
value 0.00065
scoring_system epss
scoring_elements 0.20185
published_at 2026-04-01T12:55:00Z
1
value 0.00065
scoring_system epss
scoring_elements 0.20334
published_at 2026-04-02T12:55:00Z
2
value 0.00065
scoring_system epss
scoring_elements 0.20393
published_at 2026-04-04T12:55:00Z
3
value 0.00065
scoring_system epss
scoring_elements 0.20117
published_at 2026-04-07T12:55:00Z
4
value 0.00065
scoring_system epss
scoring_elements 0.20197
published_at 2026-04-08T12:55:00Z
5
value 0.00065
scoring_system epss
scoring_elements 0.20255
published_at 2026-04-09T12:55:00Z
6
value 0.00065
scoring_system epss
scoring_elements 0.20279
published_at 2026-04-11T12:55:00Z
7
value 0.00065
scoring_system epss
scoring_elements 0.20234
published_at 2026-04-12T12:55:00Z
8
value 0.00065
scoring_system epss
scoring_elements 0.20175
published_at 2026-04-13T12:55:00Z
9
value 0.00065
scoring_system epss
scoring_elements 0.20168
published_at 2026-04-16T12:55:00Z
10
value 0.00065
scoring_system epss
scoring_elements 0.20172
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-3554
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=539495
reference_id 539495
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=539495
3
reference_url https://access.redhat.com/errata/RHSA-2009:1636
reference_id RHSA-2009:1636
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1636
4
reference_url https://access.redhat.com/errata/RHSA-2009:1637
reference_id RHSA-2009:1637
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1637
5
reference_url https://access.redhat.com/errata/RHSA-2009:1649
reference_id RHSA-2009:1649
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1649
6
reference_url https://access.redhat.com/errata/RHSA-2009:1650
reference_id RHSA-2009:1650
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1650
fixed_packages
aliases CVE-2009-3554
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wz7p-atjg-q7az
4
url VCID-z7ht-bq8z-3qgd
vulnerability_id VCID-z7ht-bq8z-3qgd
summary 
XML signature HMAC truncation authentication bypass
This package uses a parameter that defines an HMAC truncation length (`HMACOutputLength`) but does not require a minimum for this length, which allows attackers to spoof HMAC-based signatures and bypass authentication by specifying a truncation length with a small number of bits.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0217.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0217.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-0217
reference_id
reference_type
scores
0
value 0.01986
scoring_system epss
scoring_elements 0.83529
published_at 2026-04-01T12:55:00Z
1
value 0.01986
scoring_system epss
scoring_elements 0.83581
published_at 2026-04-08T12:55:00Z
2
value 0.01986
scoring_system epss
scoring_elements 0.83557
published_at 2026-04-07T12:55:00Z
3
value 0.01986
scoring_system epss
scoring_elements 0.83556
published_at 2026-04-04T12:55:00Z
4
value 0.01986
scoring_system epss
scoring_elements 0.83541
published_at 2026-04-02T12:55:00Z
5
value 0.01986
scoring_system epss
scoring_elements 0.83605
published_at 2026-04-11T12:55:00Z
6
value 0.01986
scoring_system epss
scoring_elements 0.8359
published_at 2026-04-09T12:55:00Z
7
value 0.0222
scoring_system epss
scoring_elements 0.84512
published_at 2026-04-18T12:55:00Z
8
value 0.0222
scoring_system epss
scoring_elements 0.84491
published_at 2026-04-13T12:55:00Z
9
value 0.0222
scoring_system epss
scoring_elements 0.84495
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-0217
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=511915
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=511915
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0217
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0217
4
reference_url https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-041
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-041
5
reference_url https://gitlab.gnome.org/Archive/xmlsec/-/commit/34b349675af9f72eb822837a8772cc1ead7115c7
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://gitlab.gnome.org/Archive/xmlsec/-/commit/34b349675af9f72eb822837a8772cc1ead7115c7
6
reference_url https://issues.apache.org/bugzilla/show_bug.cgi?id=47526
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.apache.org/bugzilla/show_bug.cgi?id=47526
7
reference_url https://issues.apache.org/bugzilla/show_bug.cgi?id=47527
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.apache.org/bugzilla/show_bug.cgi?id=47527
8
reference_url https://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html
9
reference_url https://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html
10
reference_url https://lists.opensuse.org/opensuse-security-announce/2010-03/msg00005.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.opensuse.org/opensuse-security-announce/2010-03/msg00005.html
11
reference_url https://marc.info/?l=bugtraq&m=125787273209737&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://marc.info/?l=bugtraq&m=125787273209737&w=2
12
reference_url https://nvd.nist.gov/vuln/detail/CVE-2009-0217
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2009-0217
13
reference_url https://rhn.redhat.com/errata/RHSA-2009-1428.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://rhn.redhat.com/errata/RHSA-2009-1428.html
14
reference_url https://svn.apache.org/viewvc?revision=794013&view=revision
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://svn.apache.org/viewvc?revision=794013&view=revision
15
reference_url http://svn.apache.org/viewvc?view=revision&revision=794013
reference_id
reference_type
scores
url http://svn.apache.org/viewvc?view=revision&revision=794013
16
reference_url https://www.debian.org/security/2010/dsa-1995
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2010/dsa-1995
17
reference_url https://www.gentoo.org/security/en/glsa/glsa-201408-19.xml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.gentoo.org/security/en/glsa/glsa-201408-19.xml
18
reference_url https://www.kb.cert.org/vuls/id/466161
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.kb.cert.org/vuls/id/466161
19
reference_url https://www.kb.cert.org/vuls/id/MAPG-7TSKXQ
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.kb.cert.org/vuls/id/MAPG-7TSKXQ
20
reference_url https://www.kb.cert.org/vuls/id/WDON-7TY529
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.kb.cert.org/vuls/id/WDON-7TY529
21
reference_url https://www.mandriva.com/security/advisories?name=MDVSA-2009:209
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.mandriva.com/security/advisories?name=MDVSA-2009:209
22
reference_url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00310.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00310.html
23
reference_url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00325.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00325.html
24
reference_url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00494.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00494.html
25
reference_url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00505.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00505.html
26
reference_url https://www.redhat.com/support/errata/RHSA-2009-1694.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.redhat.com/support/errata/RHSA-2009-1694.html
27
reference_url https://www.ubuntu.com/usn/USN-903-1
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.ubuntu.com/usn/USN-903-1
28
reference_url https://www.us-cert.gov/cas/techalerts/TA09-294A.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.us-cert.gov/cas/techalerts/TA09-294A.html
29
reference_url https://www.w3.org/2008/06/xmldsigcore-errata.html#e03
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.w3.org/2008/06/xmldsigcore-errata.html#e03
30
reference_url https://www.w3.org/QA/2009/07/hmac_truncation_in_xml_signatu.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.w3.org/QA/2009/07/hmac_truncation_in_xml_signatu.html
31
reference_url http://www.us-cert.gov/cas/techalerts/TA10-159B.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.us-cert.gov/cas/techalerts/TA10-159B.html
32
reference_url https://bugzilla.redhat.com/CVE-2009-0217
reference_id CVE-2009-0217
reference_type
scores
url https://bugzilla.redhat.com/CVE-2009-0217
33
reference_url https://github.com/advisories/GHSA-8hfm-837h-hjg5
reference_id GHSA-8hfm-837h-hjg5
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-8hfm-837h-hjg5
34
reference_url https://security.gentoo.org/glsa/201206-13
reference_id GLSA-201206-13
reference_type
scores
url https://security.gentoo.org/glsa/201206-13
35
reference_url https://security.gentoo.org/glsa/201408-19
reference_id GLSA-201408-19
reference_type
scores
url https://security.gentoo.org/glsa/201408-19
36
reference_url https://access.redhat.com/errata/RHSA-2009:1200
reference_id RHSA-2009:1200
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1200
37
reference_url https://access.redhat.com/errata/RHSA-2009:1201
reference_id RHSA-2009:1201
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1201
38
reference_url https://access.redhat.com/errata/RHSA-2009:1428
reference_id RHSA-2009:1428
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1428
39
reference_url https://access.redhat.com/errata/RHSA-2009:1636
reference_id RHSA-2009:1636
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1636
40
reference_url https://access.redhat.com/errata/RHSA-2009:1637
reference_id RHSA-2009:1637
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1637
41
reference_url https://access.redhat.com/errata/RHSA-2009:1649
reference_id RHSA-2009:1649
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1649
42
reference_url https://access.redhat.com/errata/RHSA-2009:1650
reference_id RHSA-2009:1650
reference_type
scores
url https://access.redhat.com/errata/RHSA-2009:1650
43
reference_url https://access.redhat.com/errata/RHSA-2010:0043
reference_id RHSA-2010:0043
reference_type
scores
url https://access.redhat.com/errata/RHSA-2010:0043
44
reference_url https://usn.ubuntu.com/814-1/
reference_id USN-814-1
reference_type
scores
url https://usn.ubuntu.com/814-1/
45
reference_url https://usn.ubuntu.com/826-1/
reference_id USN-826-1
reference_type
scores
url https://usn.ubuntu.com/826-1/
46
reference_url https://usn.ubuntu.com/903-1/
reference_id USN-903-1
reference_type
scores
url https://usn.ubuntu.com/903-1/
fixed_packages
aliases CVE-2009-0217, GHSA-8hfm-837h-hjg5
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z7ht-bq8z-3qgd
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-messaging@1.4.0-3.SP3_CP09.4.ep1%3Farch=el5