Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/io.undertow/undertow-core@1.4.0
Typemaven
Namespaceio.undertow
Nameundertow-core
Version1.4.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.4.0.Beta1
Latest_non_vulnerable_version2.4.0.Beta1
Affected_by_vulnerabilities
0
url VCID-2e2u-nvuu-kfbs
vulnerability_id VCID-2e2u-nvuu-kfbs
summary 
Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling)
Invalid characters are allowed in query strings and path parameters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP response the attacker could poison a web-cache, perform an XSS attack, or obtain sensitive information from requests other than their own.
references
0
reference_url https://access.redhat.com/errata/RHSA-2017:3454
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:3454
1
reference_url https://access.redhat.com/errata/RHSA-2017:3455
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:3455
2
reference_url https://access.redhat.com/errata/RHSA-2017:3456
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:3456
3
reference_url https://access.redhat.com/errata/RHSA-2017:3458
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:3458
4
reference_url https://access.redhat.com/errata/RHSA-2018:0002
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:0002
5
reference_url https://access.redhat.com/errata/RHSA-2018:0003
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:0003
6
reference_url https://access.redhat.com/errata/RHSA-2018:0004
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:0004
7
reference_url https://access.redhat.com/errata/RHSA-2018:0005
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:0005
8
reference_url https://access.redhat.com/errata/RHSA-2018:1322
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2018:1322
9
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7559.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7559.json
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-7559
reference_id
reference_type
scores
0
value 0.01128
scoring_system epss
scoring_elements 0.78381
published_at 2026-04-29T12:55:00Z
1
value 0.01128
scoring_system epss
scoring_elements 0.78267
published_at 2026-04-07T12:55:00Z
2
value 0.01128
scoring_system epss
scoring_elements 0.78293
published_at 2026-04-08T12:55:00Z
3
value 0.01128
scoring_system epss
scoring_elements 0.78299
published_at 2026-04-09T12:55:00Z
4
value 0.01128
scoring_system epss
scoring_elements 0.78324
published_at 2026-04-11T12:55:00Z
5
value 0.01128
scoring_system epss
scoring_elements 0.78307
published_at 2026-04-12T12:55:00Z
6
value 0.01128
scoring_system epss
scoring_elements 0.78302
published_at 2026-04-13T12:55:00Z
7
value 0.01128
scoring_system epss
scoring_elements 0.78331
published_at 2026-04-16T12:55:00Z
8
value 0.01128
scoring_system epss
scoring_elements 0.78329
published_at 2026-04-18T12:55:00Z
9
value 0.01128
scoring_system epss
scoring_elements 0.78326
published_at 2026-04-21T12:55:00Z
10
value 0.01128
scoring_system epss
scoring_elements 0.78358
published_at 2026-04-24T12:55:00Z
11
value 0.01128
scoring_system epss
scoring_elements 0.78365
published_at 2026-04-26T12:55:00Z
12
value 0.01128
scoring_system epss
scoring_elements 0.78246
published_at 2026-04-01T12:55:00Z
13
value 0.01128
scoring_system epss
scoring_elements 0.78254
published_at 2026-04-02T12:55:00Z
14
value 0.01128
scoring_system epss
scoring_elements 0.78285
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-7559
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7559
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7559
12
reference_url https://github.com/undertow-io/undertow
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow
13
reference_url https://issues.jboss.org/browse/UNDERTOW-1251
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jboss.org/browse/UNDERTOW-1251
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1481665
reference_id 1481665
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1481665
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885576
reference_id 885576
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885576
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:undertow:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:undertow:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:undertow:*:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:undertow:2.0.0:alpha1:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:undertow:2.0.0:alpha1:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:undertow:2.0.0:alpha1:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-7559
reference_id CVE-2017-7559
reference_type
scores
0
value 5.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:N
1
value 6.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
2
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
3
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2017-7559
19
reference_url https://github.com/advisories/GHSA-rj76-h87p-r3wf
reference_id GHSA-rj76-h87p-r3wf
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rj76-h87p-r3wf
fixed_packages
0
url pkg:maven/io.undertow/undertow-core@1.4.17.Final
purl pkg:maven/io.undertow/undertow-core@1.4.17.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-1w4t-um5v-jkfv
3
vulnerability VCID-2cv5-9v62-kfbm
4
vulnerability VCID-2ez8-r9wv-53du
5
vulnerability VCID-5585-a76n-zubf
6
vulnerability VCID-62gn-nwup-8uat
7
vulnerability VCID-73st-24ck-uydb
8
vulnerability VCID-77xn-dtdn-hfa2
9
vulnerability VCID-7ec2-9kmy-77eh
10
vulnerability VCID-7yc7-e35f-8uhj
11
vulnerability VCID-93ut-2de3-ckc5
12
vulnerability VCID-bhrz-ea7j-k3bh
13
vulnerability VCID-bm42-byxp-2kb5
14
vulnerability VCID-bpuw-kn4r-6kau
15
vulnerability VCID-cf5j-2dz8-7bbu
16
vulnerability VCID-dvxb-wu3m-xuaz
17
vulnerability VCID-gsr8-1dea-effx
18
vulnerability VCID-k6c9-mckm-cyhy
19
vulnerability VCID-ns3p-22xg-q3bz
20
vulnerability VCID-p9y4-yce4-zqbk
21
vulnerability VCID-rqvc-k1jm-9kg9
22
vulnerability VCID-scjb-1mwk-rfdd
23
vulnerability VCID-sxup-wzjc-tue1
24
vulnerability VCID-tc7q-5xss-nyfh
25
vulnerability VCID-urxh-sp91-kuet
26
vulnerability VCID-usz2-tufg-k7gz
27
vulnerability VCID-xftw-raz7-b7e1
28
vulnerability VCID-xme8-usmd-vqg3
29
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.17.Final
1
url pkg:maven/io.undertow/undertow-core@2.0.0.Alpha2
purl pkg:maven/io.undertow/undertow-core@2.0.0.Alpha2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.0.Alpha2
2
url pkg:maven/io.undertow/undertow-core@2.0.1.Final
purl pkg:maven/io.undertow/undertow-core@2.0.1.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-2cv5-9v62-kfbm
3
vulnerability VCID-2ez8-r9wv-53du
4
vulnerability VCID-4v1f-kt5y-w7d1
5
vulnerability VCID-5585-a76n-zubf
6
vulnerability VCID-62gn-nwup-8uat
7
vulnerability VCID-73st-24ck-uydb
8
vulnerability VCID-7ec2-9kmy-77eh
9
vulnerability VCID-7yc7-e35f-8uhj
10
vulnerability VCID-93ut-2de3-ckc5
11
vulnerability VCID-bhrz-ea7j-k3bh
12
vulnerability VCID-bm42-byxp-2kb5
13
vulnerability VCID-bpuw-kn4r-6kau
14
vulnerability VCID-cf5j-2dz8-7bbu
15
vulnerability VCID-dvxb-wu3m-xuaz
16
vulnerability VCID-gsr8-1dea-effx
17
vulnerability VCID-k6c9-mckm-cyhy
18
vulnerability VCID-ns3p-22xg-q3bz
19
vulnerability VCID-p9y4-yce4-zqbk
20
vulnerability VCID-rqvc-k1jm-9kg9
21
vulnerability VCID-scjb-1mwk-rfdd
22
vulnerability VCID-sxup-wzjc-tue1
23
vulnerability VCID-tc7q-5xss-nyfh
24
vulnerability VCID-urxh-sp91-kuet
25
vulnerability VCID-usz2-tufg-k7gz
26
vulnerability VCID-xftw-raz7-b7e1
27
vulnerability VCID-xme8-usmd-vqg3
28
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.1.Final
aliases CVE-2017-7559, GHSA-rj76-h87p-r3wf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2e2u-nvuu-kfbs
1
url VCID-77xn-dtdn-hfa2
vulnerability_id VCID-77xn-dtdn-hfa2
summary 
Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling)
It was discovered in Undertow that the code that parses the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP response the attacker could poison a web-cache, perform an XSS attack, or obtain sensitive information from requests other than their own.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2017-1409.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2017-1409.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2666.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2666.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-2666
reference_id
reference_type
scores
0
value 0.01394
scoring_system epss
scoring_elements 0.80465
published_at 2026-04-29T12:55:00Z
1
value 0.01394
scoring_system epss
scoring_elements 0.80411
published_at 2026-04-16T12:55:00Z
2
value 0.01394
scoring_system epss
scoring_elements 0.80412
published_at 2026-04-18T12:55:00Z
3
value 0.01394
scoring_system epss
scoring_elements 0.80416
published_at 2026-04-21T12:55:00Z
4
value 0.01394
scoring_system epss
scoring_elements 0.80442
published_at 2026-04-24T12:55:00Z
5
value 0.01394
scoring_system epss
scoring_elements 0.80448
published_at 2026-04-26T12:55:00Z
6
value 0.01394
scoring_system epss
scoring_elements 0.8033
published_at 2026-04-01T12:55:00Z
7
value 0.01394
scoring_system epss
scoring_elements 0.80337
published_at 2026-04-02T12:55:00Z
8
value 0.01394
scoring_system epss
scoring_elements 0.80357
published_at 2026-04-04T12:55:00Z
9
value 0.01394
scoring_system epss
scoring_elements 0.80346
published_at 2026-04-07T12:55:00Z
10
value 0.01394
scoring_system epss
scoring_elements 0.80375
published_at 2026-04-08T12:55:00Z
11
value 0.01394
scoring_system epss
scoring_elements 0.80385
published_at 2026-04-09T12:55:00Z
12
value 0.01394
scoring_system epss
scoring_elements 0.80404
published_at 2026-04-11T12:55:00Z
13
value 0.01394
scoring_system epss
scoring_elements 0.80389
published_at 2026-04-12T12:55:00Z
14
value 0.01394
scoring_system epss
scoring_elements 0.80382
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-2666
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2666
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2666
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2666
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2666
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2670
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2670
6
reference_url https://github.com/advisories/GHSA-mcfm-h73v-635m
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-mcfm-h73v-635m
7
reference_url http://www.securityfocus.com/bid/98966
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/98966
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1436163
reference_id 1436163
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1436163
9
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864405
reference_id 864405
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864405
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-2666
reference_id CVE-2017-2666
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2017-2666
11
reference_url https://access.redhat.com/errata/RHSA-2017:1409
reference_id RHSA-2017:1409
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:1409
fixed_packages
0
url pkg:maven/io.undertow/undertow-core@1.4.17.Final
purl pkg:maven/io.undertow/undertow-core@1.4.17.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-1w4t-um5v-jkfv
3
vulnerability VCID-2cv5-9v62-kfbm
4
vulnerability VCID-2ez8-r9wv-53du
5
vulnerability VCID-5585-a76n-zubf
6
vulnerability VCID-62gn-nwup-8uat
7
vulnerability VCID-73st-24ck-uydb
8
vulnerability VCID-77xn-dtdn-hfa2
9
vulnerability VCID-7ec2-9kmy-77eh
10
vulnerability VCID-7yc7-e35f-8uhj
11
vulnerability VCID-93ut-2de3-ckc5
12
vulnerability VCID-bhrz-ea7j-k3bh
13
vulnerability VCID-bm42-byxp-2kb5
14
vulnerability VCID-bpuw-kn4r-6kau
15
vulnerability VCID-cf5j-2dz8-7bbu
16
vulnerability VCID-dvxb-wu3m-xuaz
17
vulnerability VCID-gsr8-1dea-effx
18
vulnerability VCID-k6c9-mckm-cyhy
19
vulnerability VCID-ns3p-22xg-q3bz
20
vulnerability VCID-p9y4-yce4-zqbk
21
vulnerability VCID-rqvc-k1jm-9kg9
22
vulnerability VCID-scjb-1mwk-rfdd
23
vulnerability VCID-sxup-wzjc-tue1
24
vulnerability VCID-tc7q-5xss-nyfh
25
vulnerability VCID-urxh-sp91-kuet
26
vulnerability VCID-usz2-tufg-k7gz
27
vulnerability VCID-xftw-raz7-b7e1
28
vulnerability VCID-xme8-usmd-vqg3
29
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.17.Final
1
url pkg:maven/io.undertow/undertow-core@1.4.17
purl pkg:maven/io.undertow/undertow-core@1.4.17
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.17
2
url pkg:maven/io.undertow/undertow-core@2.0.0.Final
purl pkg:maven/io.undertow/undertow-core@2.0.0.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-2cv5-9v62-kfbm
3
vulnerability VCID-2e2u-nvuu-kfbs
4
vulnerability VCID-4v1f-kt5y-w7d1
5
vulnerability VCID-5585-a76n-zubf
6
vulnerability VCID-62gn-nwup-8uat
7
vulnerability VCID-73st-24ck-uydb
8
vulnerability VCID-7ec2-9kmy-77eh
9
vulnerability VCID-7yc7-e35f-8uhj
10
vulnerability VCID-93ut-2de3-ckc5
11
vulnerability VCID-ay2f-3xcv-dqdc
12
vulnerability VCID-bhrz-ea7j-k3bh
13
vulnerability VCID-bm42-byxp-2kb5
14
vulnerability VCID-bpuw-kn4r-6kau
15
vulnerability VCID-cf5j-2dz8-7bbu
16
vulnerability VCID-dvxb-wu3m-xuaz
17
vulnerability VCID-gsr8-1dea-effx
18
vulnerability VCID-k6c9-mckm-cyhy
19
vulnerability VCID-ns3p-22xg-q3bz
20
vulnerability VCID-p9y4-yce4-zqbk
21
vulnerability VCID-rqvc-k1jm-9kg9
22
vulnerability VCID-scjb-1mwk-rfdd
23
vulnerability VCID-sxup-wzjc-tue1
24
vulnerability VCID-tc7q-5xss-nyfh
25
vulnerability VCID-urxh-sp91-kuet
26
vulnerability VCID-usz2-tufg-k7gz
27
vulnerability VCID-xftw-raz7-b7e1
28
vulnerability VCID-xme8-usmd-vqg3
29
vulnerability VCID-ygp7-kj2w-syat
30
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.0.Final
3
url pkg:maven/io.undertow/undertow-core@2.0.0
purl pkg:maven/io.undertow/undertow-core@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2e2u-nvuu-kfbs
1
vulnerability VCID-4v1f-kt5y-w7d1
2
vulnerability VCID-ay2f-3xcv-dqdc
3
vulnerability VCID-bm42-byxp-2kb5
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.0
aliases CVE-2017-2666, GHSA-mcfm-h73v-635m
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-77xn-dtdn-hfa2
2
url VCID-y5s2-w88t-8uhx
vulnerability_id VCID-y5s2-w88t-8uhx
summary 
Uncontrolled Resource Consumption
Remote attackers could cause a denial of service (CPU and disk consumption) via a long URL.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7046.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7046.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2016-7046
reference_id
reference_type
scores
0
value 0.0406
scoring_system epss
scoring_elements 0.88557
published_at 2026-04-29T12:55:00Z
1
value 0.0406
scoring_system epss
scoring_elements 0.88473
published_at 2026-04-01T12:55:00Z
2
value 0.0406
scoring_system epss
scoring_elements 0.88481
published_at 2026-04-02T12:55:00Z
3
value 0.0406
scoring_system epss
scoring_elements 0.88498
published_at 2026-04-04T12:55:00Z
4
value 0.0406
scoring_system epss
scoring_elements 0.88501
published_at 2026-04-07T12:55:00Z
5
value 0.0406
scoring_system epss
scoring_elements 0.88519
published_at 2026-04-08T12:55:00Z
6
value 0.0406
scoring_system epss
scoring_elements 0.88524
published_at 2026-04-09T12:55:00Z
7
value 0.0406
scoring_system epss
scoring_elements 0.88536
published_at 2026-04-11T12:55:00Z
8
value 0.0406
scoring_system epss
scoring_elements 0.88528
published_at 2026-04-13T12:55:00Z
9
value 0.0406
scoring_system epss
scoring_elements 0.88542
published_at 2026-04-16T12:55:00Z
10
value 0.0406
scoring_system epss
scoring_elements 0.88538
published_at 2026-04-18T12:55:00Z
11
value 0.0406
scoring_system epss
scoring_elements 0.88535
published_at 2026-04-21T12:55:00Z
12
value 0.0406
scoring_system epss
scoring_elements 0.88552
published_at 2026-04-24T12:55:00Z
13
value 0.0406
scoring_system epss
scoring_elements 0.88558
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2016-7046
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1376646
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1376646
3
reference_url https://github.com/undertow-io/undertow
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow
4
reference_url https://github.com/undertow-io/undertow/commit/c518b5a1784061d807efedcef0a03fcd35a53de2
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow/commit/c518b5a1784061d807efedcef0a03fcd35a53de2
5
reference_url https://issues.redhat.com/browse/UNDERTOW-835
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.redhat.com/browse/UNDERTOW-835
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2016-7046
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2016-7046
7
reference_url https://security-tracker.debian.org/tracker/CVE-2016-7046
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://security-tracker.debian.org/tracker/CVE-2016-7046
8
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838600
reference_id 838600
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=838600
9
reference_url https://access.redhat.com/security/cve/CVE-2016-7046
reference_id CVE-2016-7046
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2016-7046
10
reference_url https://github.com/advisories/GHSA-3f57-w2rp-72fc
reference_id GHSA-3f57-w2rp-72fc
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3f57-w2rp-72fc
11
reference_url https://access.redhat.com/errata/RHSA-2016:2640
reference_id RHSA-2016:2640
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:2640
12
reference_url https://access.redhat.com/errata/RHSA-2016:2641
reference_id RHSA-2016:2641
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:2641
13
reference_url https://access.redhat.com/errata/RHSA-2016:2642
reference_id RHSA-2016:2642
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:2642
14
reference_url https://access.redhat.com/errata/RHSA-2016:2657
reference_id RHSA-2016:2657
reference_type
scores
url https://access.redhat.com/errata/RHSA-2016:2657
fixed_packages
0
url pkg:maven/io.undertow/undertow-core@1.4.3.Final
purl pkg:maven/io.undertow/undertow-core@1.4.3.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-1w4t-um5v-jkfv
3
vulnerability VCID-2cv5-9v62-kfbm
4
vulnerability VCID-2e2u-nvuu-kfbs
5
vulnerability VCID-2ez8-r9wv-53du
6
vulnerability VCID-5585-a76n-zubf
7
vulnerability VCID-62gn-nwup-8uat
8
vulnerability VCID-73st-24ck-uydb
9
vulnerability VCID-77xn-dtdn-hfa2
10
vulnerability VCID-7ec2-9kmy-77eh
11
vulnerability VCID-7yc7-e35f-8uhj
12
vulnerability VCID-93ut-2de3-ckc5
13
vulnerability VCID-bhrz-ea7j-k3bh
14
vulnerability VCID-bm42-byxp-2kb5
15
vulnerability VCID-bpuw-kn4r-6kau
16
vulnerability VCID-cf5j-2dz8-7bbu
17
vulnerability VCID-dvxb-wu3m-xuaz
18
vulnerability VCID-gsr8-1dea-effx
19
vulnerability VCID-k6c9-mckm-cyhy
20
vulnerability VCID-ns3p-22xg-q3bz
21
vulnerability VCID-p9y4-yce4-zqbk
22
vulnerability VCID-rqvc-k1jm-9kg9
23
vulnerability VCID-scjb-1mwk-rfdd
24
vulnerability VCID-sxup-wzjc-tue1
25
vulnerability VCID-tc7q-5xss-nyfh
26
vulnerability VCID-urxh-sp91-kuet
27
vulnerability VCID-usz2-tufg-k7gz
28
vulnerability VCID-xftw-raz7-b7e1
29
vulnerability VCID-xme8-usmd-vqg3
30
vulnerability VCID-y5s2-w88t-8uhx
31
vulnerability VCID-ygp7-kj2w-syat
32
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.3.Final
1
url pkg:maven/io.undertow/undertow-core@1.4.4.Final
purl pkg:maven/io.undertow/undertow-core@1.4.4.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-1w4t-um5v-jkfv
3
vulnerability VCID-2cv5-9v62-kfbm
4
vulnerability VCID-2e2u-nvuu-kfbs
5
vulnerability VCID-2ez8-r9wv-53du
6
vulnerability VCID-5585-a76n-zubf
7
vulnerability VCID-62gn-nwup-8uat
8
vulnerability VCID-73st-24ck-uydb
9
vulnerability VCID-77xn-dtdn-hfa2
10
vulnerability VCID-7ec2-9kmy-77eh
11
vulnerability VCID-7yc7-e35f-8uhj
12
vulnerability VCID-93ut-2de3-ckc5
13
vulnerability VCID-bhrz-ea7j-k3bh
14
vulnerability VCID-bm42-byxp-2kb5
15
vulnerability VCID-bpuw-kn4r-6kau
16
vulnerability VCID-cf5j-2dz8-7bbu
17
vulnerability VCID-dvxb-wu3m-xuaz
18
vulnerability VCID-gsr8-1dea-effx
19
vulnerability VCID-k6c9-mckm-cyhy
20
vulnerability VCID-ns3p-22xg-q3bz
21
vulnerability VCID-p9y4-yce4-zqbk
22
vulnerability VCID-rqvc-k1jm-9kg9
23
vulnerability VCID-scjb-1mwk-rfdd
24
vulnerability VCID-sxup-wzjc-tue1
25
vulnerability VCID-tc7q-5xss-nyfh
26
vulnerability VCID-urxh-sp91-kuet
27
vulnerability VCID-usz2-tufg-k7gz
28
vulnerability VCID-xftw-raz7-b7e1
29
vulnerability VCID-xme8-usmd-vqg3
30
vulnerability VCID-ygp7-kj2w-syat
31
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.4.Final
2
url pkg:maven/io.undertow/undertow-core@2.0.0.Beta1
purl pkg:maven/io.undertow/undertow-core@2.0.0.Beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-2cv5-9v62-kfbm
3
vulnerability VCID-5585-a76n-zubf
4
vulnerability VCID-62gn-nwup-8uat
5
vulnerability VCID-73st-24ck-uydb
6
vulnerability VCID-77xn-dtdn-hfa2
7
vulnerability VCID-7ec2-9kmy-77eh
8
vulnerability VCID-7yc7-e35f-8uhj
9
vulnerability VCID-93ut-2de3-ckc5
10
vulnerability VCID-ay2f-3xcv-dqdc
11
vulnerability VCID-bhrz-ea7j-k3bh
12
vulnerability VCID-bpuw-kn4r-6kau
13
vulnerability VCID-cf5j-2dz8-7bbu
14
vulnerability VCID-dvxb-wu3m-xuaz
15
vulnerability VCID-gsr8-1dea-effx
16
vulnerability VCID-k6c9-mckm-cyhy
17
vulnerability VCID-ns3p-22xg-q3bz
18
vulnerability VCID-p9y4-yce4-zqbk
19
vulnerability VCID-rqvc-k1jm-9kg9
20
vulnerability VCID-scjb-1mwk-rfdd
21
vulnerability VCID-sxup-wzjc-tue1
22
vulnerability VCID-tc7q-5xss-nyfh
23
vulnerability VCID-urxh-sp91-kuet
24
vulnerability VCID-usz2-tufg-k7gz
25
vulnerability VCID-xftw-raz7-b7e1
26
vulnerability VCID-xme8-usmd-vqg3
27
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.0.Beta1
3
url pkg:maven/io.undertow/undertow-core@2.0.1
purl pkg:maven/io.undertow/undertow-core@2.0.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.1
aliases CVE-2016-7046, GHSA-3f57-w2rp-72fc
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-y5s2-w88t-8uhx
3
url VCID-ygp7-kj2w-syat
vulnerability_id VCID-ygp7-kj2w-syat
summary 
Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling)
It was discovered that Undertow processes http request headers with unusual whitespaces which can cause possible http request smuggling.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12165.json
reference_id
reference_type
scores
0
value 2.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12165.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-12165
reference_id
reference_type
scores
0
value 0.01096
scoring_system epss
scoring_elements 0.78083
published_at 2026-04-29T12:55:00Z
1
value 0.01096
scoring_system epss
scoring_elements 0.7807
published_at 2026-04-26T12:55:00Z
2
value 0.01096
scoring_system epss
scoring_elements 0.78063
published_at 2026-04-24T12:55:00Z
3
value 0.01096
scoring_system epss
scoring_elements 0.7803
published_at 2026-04-21T12:55:00Z
4
value 0.01096
scoring_system epss
scoring_elements 0.78037
published_at 2026-04-18T12:55:00Z
5
value 0.01096
scoring_system epss
scoring_elements 0.78038
published_at 2026-04-16T12:55:00Z
6
value 0.01096
scoring_system epss
scoring_elements 0.78003
published_at 2026-04-13T12:55:00Z
7
value 0.01096
scoring_system epss
scoring_elements 0.78005
published_at 2026-04-12T12:55:00Z
8
value 0.01096
scoring_system epss
scoring_elements 0.77982
published_at 2026-04-04T12:55:00Z
9
value 0.01096
scoring_system epss
scoring_elements 0.77946
published_at 2026-04-01T12:55:00Z
10
value 0.01096
scoring_system epss
scoring_elements 0.77953
published_at 2026-04-02T12:55:00Z
11
value 0.01096
scoring_system epss
scoring_elements 0.78022
published_at 2026-04-11T12:55:00Z
12
value 0.01096
scoring_system epss
scoring_elements 0.77995
published_at 2026-04-09T12:55:00Z
13
value 0.01096
scoring_system epss
scoring_elements 0.7799
published_at 2026-04-08T12:55:00Z
14
value 0.01096
scoring_system epss
scoring_elements 0.77963
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-12165
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12165
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-12165
3
reference_url https://github.com/undertow-io/undertow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow
4
reference_url https://github.com/undertow-io/undertow/commit/1e72647818c9fb31b693a953b1ae595a6c82eb7f
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow/commit/1e72647818c9fb31b693a953b1ae595a6c82eb7f
5
reference_url https://github.com/undertow-io/undertow/commit/5b008b7ac312c6cdb76679ff58c43620bb79d44f
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow/commit/5b008b7ac312c6cdb76679ff58c43620bb79d44f
6
reference_url https://github.com/undertow-io/undertow/commit/691440ee58259fba76711b60d56dde6679808bdc
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow/commit/691440ee58259fba76711b60d56dde6679808bdc
7
reference_url https://issues.redhat.com/browse/UNDERTOW-1251
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://issues.redhat.com/browse/UNDERTOW-1251
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1490301
reference_id 1490301
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1490301
9
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885338
reference_id 885338
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=885338
10
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-12165
reference_id CVE-2017-12165
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2017-12165
11
reference_url https://github.com/advisories/GHSA-5gg7-5wv8-4gcj
reference_id GHSA-5gg7-5wv8-4gcj
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5gg7-5wv8-4gcj
fixed_packages
0
url pkg:maven/io.undertow/undertow-core@1.4.17.Final
purl pkg:maven/io.undertow/undertow-core@1.4.17.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-1w4t-um5v-jkfv
3
vulnerability VCID-2cv5-9v62-kfbm
4
vulnerability VCID-2ez8-r9wv-53du
5
vulnerability VCID-5585-a76n-zubf
6
vulnerability VCID-62gn-nwup-8uat
7
vulnerability VCID-73st-24ck-uydb
8
vulnerability VCID-77xn-dtdn-hfa2
9
vulnerability VCID-7ec2-9kmy-77eh
10
vulnerability VCID-7yc7-e35f-8uhj
11
vulnerability VCID-93ut-2de3-ckc5
12
vulnerability VCID-bhrz-ea7j-k3bh
13
vulnerability VCID-bm42-byxp-2kb5
14
vulnerability VCID-bpuw-kn4r-6kau
15
vulnerability VCID-cf5j-2dz8-7bbu
16
vulnerability VCID-dvxb-wu3m-xuaz
17
vulnerability VCID-gsr8-1dea-effx
18
vulnerability VCID-k6c9-mckm-cyhy
19
vulnerability VCID-ns3p-22xg-q3bz
20
vulnerability VCID-p9y4-yce4-zqbk
21
vulnerability VCID-rqvc-k1jm-9kg9
22
vulnerability VCID-scjb-1mwk-rfdd
23
vulnerability VCID-sxup-wzjc-tue1
24
vulnerability VCID-tc7q-5xss-nyfh
25
vulnerability VCID-urxh-sp91-kuet
26
vulnerability VCID-usz2-tufg-k7gz
27
vulnerability VCID-xftw-raz7-b7e1
28
vulnerability VCID-xme8-usmd-vqg3
29
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.17.Final
1
url pkg:maven/io.undertow/undertow-core@1.4.17
purl pkg:maven/io.undertow/undertow-core@1.4.17
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.17
2
url pkg:maven/io.undertow/undertow-core@2.0.0.Beta1
purl pkg:maven/io.undertow/undertow-core@2.0.0.Beta1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-2cv5-9v62-kfbm
3
vulnerability VCID-5585-a76n-zubf
4
vulnerability VCID-62gn-nwup-8uat
5
vulnerability VCID-73st-24ck-uydb
6
vulnerability VCID-77xn-dtdn-hfa2
7
vulnerability VCID-7ec2-9kmy-77eh
8
vulnerability VCID-7yc7-e35f-8uhj
9
vulnerability VCID-93ut-2de3-ckc5
10
vulnerability VCID-ay2f-3xcv-dqdc
11
vulnerability VCID-bhrz-ea7j-k3bh
12
vulnerability VCID-bpuw-kn4r-6kau
13
vulnerability VCID-cf5j-2dz8-7bbu
14
vulnerability VCID-dvxb-wu3m-xuaz
15
vulnerability VCID-gsr8-1dea-effx
16
vulnerability VCID-k6c9-mckm-cyhy
17
vulnerability VCID-ns3p-22xg-q3bz
18
vulnerability VCID-p9y4-yce4-zqbk
19
vulnerability VCID-rqvc-k1jm-9kg9
20
vulnerability VCID-scjb-1mwk-rfdd
21
vulnerability VCID-sxup-wzjc-tue1
22
vulnerability VCID-tc7q-5xss-nyfh
23
vulnerability VCID-urxh-sp91-kuet
24
vulnerability VCID-usz2-tufg-k7gz
25
vulnerability VCID-xftw-raz7-b7e1
26
vulnerability VCID-xme8-usmd-vqg3
27
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.0.Beta1
3
url pkg:maven/io.undertow/undertow-core@2.0.1.Final
purl pkg:maven/io.undertow/undertow-core@2.0.1.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-2cv5-9v62-kfbm
3
vulnerability VCID-2ez8-r9wv-53du
4
vulnerability VCID-4v1f-kt5y-w7d1
5
vulnerability VCID-5585-a76n-zubf
6
vulnerability VCID-62gn-nwup-8uat
7
vulnerability VCID-73st-24ck-uydb
8
vulnerability VCID-7ec2-9kmy-77eh
9
vulnerability VCID-7yc7-e35f-8uhj
10
vulnerability VCID-93ut-2de3-ckc5
11
vulnerability VCID-bhrz-ea7j-k3bh
12
vulnerability VCID-bm42-byxp-2kb5
13
vulnerability VCID-bpuw-kn4r-6kau
14
vulnerability VCID-cf5j-2dz8-7bbu
15
vulnerability VCID-dvxb-wu3m-xuaz
16
vulnerability VCID-gsr8-1dea-effx
17
vulnerability VCID-k6c9-mckm-cyhy
18
vulnerability VCID-ns3p-22xg-q3bz
19
vulnerability VCID-p9y4-yce4-zqbk
20
vulnerability VCID-rqvc-k1jm-9kg9
21
vulnerability VCID-scjb-1mwk-rfdd
22
vulnerability VCID-sxup-wzjc-tue1
23
vulnerability VCID-tc7q-5xss-nyfh
24
vulnerability VCID-urxh-sp91-kuet
25
vulnerability VCID-usz2-tufg-k7gz
26
vulnerability VCID-xftw-raz7-b7e1
27
vulnerability VCID-xme8-usmd-vqg3
28
vulnerability VCID-yn69-8upm-7yc2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.0.1.Final
aliases CVE-2017-12165, GHSA-5gg7-5wv8-4gcj
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ygp7-kj2w-syat
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@1.4.0