Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/org.wildfly/wildfly-undertow@9.0.0.CR2
Typemaven
Namespaceorg.wildfly
Namewildfly-undertow
Version9.0.0.CR2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version12.0.0.Final
Latest_non_vulnerable_version12.0.0.Final
Affected_by_vulnerabilities
0
url VCID-bgcg-gmuk-ebhc
vulnerability_id VCID-bgcg-gmuk-ebhc
summary 
WildFly has incomplete blocklist vulnerability
Incomplete blocklist vulnerability in the servlet filter restriction mechanism in WildFly (formerly JBoss Application Server) before 10.0.0.Final on Windows allows remote attackers to read the sensitive files in the (1) WEB-INF or (2) META-INF directory via a request that contains (a) lowercase or (b) "meaningless" characters.
references
0
reference_url http://packetstormsecurity.com/files/136323/Wildfly-Filter-Restriction-Bypass-Information-Disclosure.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/136323/Wildfly-Filter-Restriction-Bypass-Information-Disclosure.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0793.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-0793.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-0793
reference_id
reference_type
scores
0
value 0.35266
scoring_system epss
scoring_elements 0.97053
published_at 2026-04-18T12:55:00Z
1
value 0.35266
scoring_system epss
scoring_elements 0.97013
published_at 2026-04-01T12:55:00Z
2
value 0.35266
scoring_system epss
scoring_elements 0.9702
published_at 2026-04-02T12:55:00Z
3
value 0.35266
scoring_system epss
scoring_elements 0.97024
published_at 2026-04-07T12:55:00Z
4
value 0.35266
scoring_system epss
scoring_elements 0.97034
published_at 2026-04-08T12:55:00Z
5
value 0.35266
scoring_system epss
scoring_elements 0.97035
published_at 2026-04-09T12:55:00Z
6
value 0.35266
scoring_system epss
scoring_elements 0.97038
published_at 2026-04-12T12:55:00Z
7
value 0.35266
scoring_system epss
scoring_elements 0.97039
published_at 2026-04-13T12:55:00Z
8
value 0.35266
scoring_system epss
scoring_elements 0.97049
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-0793
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1305937
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1305937
4
reference_url https://github.com/wildfly/wildfly
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/wildfly/wildfly
5
reference_url https://security.netapp.com/advisory/ntap-20180215-0001
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20180215-0001
6
reference_url https://security.netapp.com/advisory/ntap-20180215-0001/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20180215-0001/
7
reference_url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03784en_us
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03784en_us
8
reference_url https://www.exploit-db.com/exploits/39573
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/39573
9
reference_url https://www.exploit-db.com/exploits/39573/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/39573/
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_wildfly_application_server:10.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:jboss_wildfly_application_server:10.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:jboss_wildfly_application_server:10.0.0:*:*:*:*:*:*:*
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
reference_id cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
12
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/webapps/39573.txt
reference_id CVE-2016-0793
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/webapps/39573.txt
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-0793
reference_id CVE-2016-0793
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:N/A:N
1
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
2
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-0793
14
reference_url https://github.com/advisories/GHSA-9q87-22gr-r8qf
reference_id GHSA-9q87-22gr-r8qf
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9q87-22gr-r8qf
fixed_packages
0
url pkg:maven/org.wildfly/wildfly-undertow@10.0.0.Final
purl pkg:maven/org.wildfly/wildfly-undertow@10.0.0.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ay2f-3xcv-dqdc
1
vulnerability VCID-tzmu-y1p4-8bac
2
vulnerability VCID-zku3-qq4e-7fes
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.wildfly/wildfly-undertow@10.0.0.Final
aliases CVE-2016-0793, GHSA-9q87-22gr-r8qf
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bgcg-gmuk-ebhc
1
url VCID-tzmu-y1p4-8bac
vulnerability_id VCID-tzmu-y1p4-8bac
summary 
Uncontrolled Resource Consumption
Undertow in Red Hat wildfly before version 11.0.0.Beta1 is vulnerable to a resource exhaustion resulting in a denial of service. Undertow keeps a cache of seen HTTP headers in persistent connections. It was found that this cache can easily exploited to fill memory with garbage, up to "max-headers" (default 200) * "max-header-size" (default 1MB) per active TCP connection.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2017-0830.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2017-0830.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2017-0831.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2017-0831.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2017-0832.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2017-0832.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2017-0834.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2017-0834.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2017-0876.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2017-0876.html
5
reference_url https://access.redhat.com/errata/RHSA-2017:0872
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:0872
6
reference_url https://access.redhat.com/errata/RHSA-2017:0873
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:0873
7
reference_url https://access.redhat.com/errata/RHSA-2017:3454
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:3454
8
reference_url https://access.redhat.com/errata/RHSA-2017:3455
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:3455
9
reference_url https://access.redhat.com/errata/RHSA-2017:3456
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:3456
10
reference_url https://access.redhat.com/errata/RHSA-2017:3458
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:3458
11
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9589.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9589.json
12
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-9589
reference_id
reference_type
scores
0
value 0.02193
scoring_system epss
scoring_elements 0.84418
published_at 2026-04-18T12:55:00Z
1
value 0.02193
scoring_system epss
scoring_elements 0.84338
published_at 2026-04-02T12:55:00Z
2
value 0.02193
scoring_system epss
scoring_elements 0.84359
published_at 2026-04-04T12:55:00Z
3
value 0.02193
scoring_system epss
scoring_elements 0.84361
published_at 2026-04-07T12:55:00Z
4
value 0.02193
scoring_system epss
scoring_elements 0.84383
published_at 2026-04-08T12:55:00Z
5
value 0.02193
scoring_system epss
scoring_elements 0.84388
published_at 2026-04-09T12:55:00Z
6
value 0.02193
scoring_system epss
scoring_elements 0.84405
published_at 2026-04-11T12:55:00Z
7
value 0.02193
scoring_system epss
scoring_elements 0.84399
published_at 2026-04-12T12:55:00Z
8
value 0.02193
scoring_system epss
scoring_elements 0.84395
published_at 2026-04-13T12:55:00Z
9
value 0.02193
scoring_system epss
scoring_elements 0.84417
published_at 2026-04-16T12:55:00Z
10
value 0.02193
scoring_system epss
scoring_elements 0.84324
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-9589
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1404782
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1404782
14
reference_url https://github.com/wildfly/wildfly
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/wildfly/wildfly
15
reference_url https://web.archive.org/web/20200227180917/https://www.securityfocus.com/bid/97060
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227180917/https://www.securityfocus.com/bid/97060
16
reference_url https://web.archive.org/web/20200227180917/https://www.securityfocus.com/bid/97060/
reference_id
reference_type
scores
url https://web.archive.org/web/20200227180917/https://www.securityfocus.com/bid/97060/
17
reference_url http://www.securityfocus.com/bid/97060
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/97060
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-9589
reference_id CVE-2016-9589
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-9589
19
reference_url https://github.com/advisories/GHSA-p4xg-cpr9-vwvj
reference_id GHSA-p4xg-cpr9-vwvj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-p4xg-cpr9-vwvj
20
reference_url https://access.redhat.com/errata/RHSA-2017:0830
reference_id RHSA-2017:0830
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0830
21
reference_url https://access.redhat.com/errata/RHSA-2017:0831
reference_id RHSA-2017:0831
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0831
22
reference_url https://access.redhat.com/errata/RHSA-2017:0832
reference_id RHSA-2017:0832
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0832
23
reference_url https://access.redhat.com/errata/RHSA-2017:0834
reference_id RHSA-2017:0834
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0834
24
reference_url https://access.redhat.com/errata/RHSA-2017:0876
reference_id RHSA-2017:0876
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:0876
fixed_packages
0
url pkg:maven/org.wildfly/wildfly-undertow@11.0.0.Beta1
purl pkg:maven/org.wildfly/wildfly-undertow@11.0.0.Beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-zku3-qq4e-7fes
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.wildfly/wildfly-undertow@11.0.0.Beta1
aliases CVE-2016-9589, GHSA-p4xg-cpr9-vwvj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tzmu-y1p4-8bac
2
url VCID-zku3-qq4e-7fes
vulnerability_id VCID-zku3-qq4e-7fes
summary 
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
A flaw was found in Wildfly 9.x. A path traversal vulnerability through the org.wildfly.extension.undertow.deployment.ServletResourceManager.getResource method could lead to information disclosure of arbitrary local files.
references
0
reference_url https://access.redhat.com/errata/RHSA-2018:1247
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1247
1
reference_url https://access.redhat.com/errata/RHSA-2018:1248
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1248
2
reference_url https://access.redhat.com/errata/RHSA-2018:1249
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1249
3
reference_url https://access.redhat.com/errata/RHSA-2018:1251
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:1251
4
reference_url https://access.redhat.com/errata/RHSA-2018:2938
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2938
5
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1047.json
reference_id
reference_type
scores
0
value 8.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-1047.json
6
reference_url https://access.redhat.com/security/cve/CVE-2018-1047
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2018-1047
7
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-1047
reference_id
reference_type
scores
0
value 0.00176
scoring_system epss
scoring_elements 0.39078
published_at 2026-04-07T12:55:00Z
1
value 0.00176
scoring_system epss
scoring_elements 0.39129
published_at 2026-04-18T12:55:00Z
2
value 0.00176
scoring_system epss
scoring_elements 0.39159
published_at 2026-04-04T12:55:00Z
3
value 0.00176
scoring_system epss
scoring_elements 0.39133
published_at 2026-04-08T12:55:00Z
4
value 0.00176
scoring_system epss
scoring_elements 0.3916
published_at 2026-04-16T12:55:00Z
5
value 0.00176
scoring_system epss
scoring_elements 0.39105
published_at 2026-04-13T12:55:00Z
6
value 0.00176
scoring_system epss
scoring_elements 0.39124
published_at 2026-04-12T12:55:00Z
7
value 0.00176
scoring_system epss
scoring_elements 0.39161
published_at 2026-04-11T12:55:00Z
8
value 0.00176
scoring_system epss
scoring_elements 0.39149
published_at 2026-04-09T12:55:00Z
9
value 0.00176
scoring_system epss
scoring_elements 0.38951
published_at 2026-04-01T12:55:00Z
10
value 0.00176
scoring_system epss
scoring_elements 0.39137
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-1047
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1528361
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1528361
9
reference_url https://issues.jboss.org/browse/WFLY-9620
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jboss.org/browse/WFLY-9620
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-1047
reference_id CVE-2018-1047
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-1047
11
reference_url https://github.com/advisories/GHSA-fmr4-w67p-vh8x
reference_id GHSA-fmr4-w67p-vh8x
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-fmr4-w67p-vh8x
fixed_packages
0
url pkg:maven/org.wildfly/wildfly-undertow@12.0.0.Final
purl pkg:maven/org.wildfly/wildfly-undertow@12.0.0.Final
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.wildfly/wildfly-undertow@12.0.0.Final
1
url pkg:maven/org.wildfly/wildfly-undertow@12.0.0
purl pkg:maven/org.wildfly/wildfly-undertow@12.0.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.wildfly/wildfly-undertow@12.0.0
aliases CVE-2018-1047, GHSA-fmr4-w67p-vh8x
risk_score 3.9
exploitability 0.5
weighted_severity 7.7
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zku3-qq4e-7fes
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/org.wildfly/wildfly-undertow@9.0.0.CR2