Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@1.0.2.GA
Typemaven
Namespaceorg.jboss.resteasy
Nameresteasy-jaxb-provider
Version1.0.2.GA
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3.0.9.Final
Latest_non_vulnerable_version3.0.9.Final
Affected_by_vulnerabilities
0
url VCID-q1bb-9urq-77gy
vulnerability_id VCID-q1bb-9urq-77gy
summary 
Exposure of Sensitive Information to an Unauthorized Actor in RESTEasy
The readFrom function in providers.jaxb.JAXBXmlTypeProvider in RESTEasy before 2.3.2 allows remote attackers to read arbitrary files via an external entity reference in a Java Architecture for XML Binding (JAXB) input, aka an XML external entity (XXE) injection attack, a similar vulnerability to CVE-2012-0818.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2012-0441.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-0441.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2012-0519.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-0519.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2012-1056.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2012-1056.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2012-1057.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1057.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2012-1058.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2012-1058.html
5
reference_url http://rhn.redhat.com/errata/RHSA-2012-1059.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2012-1059.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2012-1125.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1125.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2014-0371.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0371.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2014-0372.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2014-0372.html
9
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-5245.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-5245.json
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-5245
reference_id
reference_type
scores
0
value 0.0095
scoring_system epss
scoring_elements 0.76412
published_at 2026-04-18T12:55:00Z
1
value 0.0095
scoring_system epss
scoring_elements 0.76307
published_at 2026-04-01T12:55:00Z
2
value 0.0095
scoring_system epss
scoring_elements 0.76311
published_at 2026-04-02T12:55:00Z
3
value 0.0095
scoring_system epss
scoring_elements 0.76341
published_at 2026-04-04T12:55:00Z
4
value 0.0095
scoring_system epss
scoring_elements 0.7632
published_at 2026-04-07T12:55:00Z
5
value 0.0095
scoring_system epss
scoring_elements 0.76353
published_at 2026-04-08T12:55:00Z
6
value 0.0095
scoring_system epss
scoring_elements 0.76367
published_at 2026-04-09T12:55:00Z
7
value 0.0095
scoring_system epss
scoring_elements 0.76393
published_at 2026-04-11T12:55:00Z
8
value 0.0095
scoring_system epss
scoring_elements 0.76371
published_at 2026-04-12T12:55:00Z
9
value 0.0095
scoring_system epss
scoring_elements 0.76365
published_at 2026-04-13T12:55:00Z
10
value 0.0095
scoring_system epss
scoring_elements 0.76406
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-5245
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=785631
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=785631
12
reference_url http://secunia.com/advisories/47832
reference_id
reference_type
scores
url http://secunia.com/advisories/47832
13
reference_url http://secunia.com/advisories/50084
reference_id
reference_type
scores
url http://secunia.com/advisories/50084
14
reference_url http://secunia.com/advisories/57716
reference_id
reference_type
scores
url http://secunia.com/advisories/57716
15
reference_url http://secunia.com/advisories/57719
reference_id
reference_type
scores
url http://secunia.com/advisories/57719
16
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/72808
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/72808
17
reference_url https://github.com/resteasy/Resteasy
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/resteasy/Resteasy
18
reference_url https://github.com/resteasy/resteasy/pull/34
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/resteasy/resteasy/pull/34
19
reference_url https://issues.jboss.org/browse/RESTEASY-647
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jboss.org/browse/RESTEASY-647
20
reference_url https://issues.jboss.org/browse/RESTEASY/fixforversion/12318708
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jboss.org/browse/RESTEASY/fixforversion/12318708
21
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-5245
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2011-5245
22
reference_url http://www.osvdb.org/78680
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.osvdb.org/78680
23
reference_url http://www.securityfocus.com/bid/51766
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/51766
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:*:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:1.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.0.0:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:1.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.0.1:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:1.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.0.2:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:1.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.1:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:1.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:1.2:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.0.0:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.0.1:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.1.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.1.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.1.0:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.1:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.2.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.2:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.2.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.2.3:*:*:*:*:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.3.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:resteasy:2.3.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:resteasy:2.3.0:*:*:*:*:*:*:*
38
reference_url https://github.com/advisories/GHSA-g4jg-gpwv-p7wv
reference_id GHSA-g4jg-gpwv-p7wv
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-g4jg-gpwv-p7wv
fixed_packages
0
url pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@2.3.2
purl pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@2.3.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@2.3.2
1
url pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@2.3.2.Final
purl pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@2.3.2.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-pje3-vvq8-p7hv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@2.3.2.Final
aliases CVE-2011-5245, GHSA-g4jg-gpwv-p7wv
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q1bb-9urq-77gy
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@1.0.2.GA