Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/mojarra@0?distro=trixie

Type deb

Namespace debian

Name mojarra

Version 0

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.0.3-2

Latest_non_vulnerable_version 2.2.8-6

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-9xsq-s4ce-skgu

vulnerability_id VCID-9xsq-s4ce-skgu

summary Oracle Mojarra uses an encrypted View State without a Message Authentication Code (MAC), which makes it easier for remote attackers to perform successful modifications of the View State via a padding oracle attack, a related issue to CVE-2010-2057.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4007

reference_id

reference_type

scores

value	0.00328
scoring_system	epss
scoring_elements	0.56014
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4007

fixed_packages

url	pkg:deb/debian/mojarra@0?distro=trixie
purl	pkg:deb/debian/mojarra@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@0%3Fdistro=trixie

url	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
purl	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@2.2.8-6%3Fdistro=trixie

aliases CVE-2010-4007

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9xsq-s4ce-skgu

url VCID-eru6-atmg-j7c1

vulnerability_id VCID-eru6-atmg-j7c1

summary Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-6950.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-6950.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-6950

reference_id

reference_type

scores

value	0.51657
scoring_system	epss
scoring_elements	0.97942
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-6950

reference_url

https://bugs.eclipse.org/bugs/show_bug.cgi?id=550943

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://bugs.eclipse.org/bugs/show_bug.cgi?id=550943

reference_url

https://github.com/eclipse-ee4j/mojarra

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra

reference_url

https://github.com/eclipse-ee4j/mojarra/commit/cefbb9447e7be560e59da2da6bd7cb93776f7741

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/commit/cefbb9447e7be560e59da2da6bd7cb93776f7741

reference_url

https://github.com/eclipse-ee4j/mojarra/issues/4571

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/issues/4571

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-6950

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2020-6950

reference_url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuapr2022.html

reference_url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpujan2022.html

reference_url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpuoct2021.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1805006
reference_id	1805006
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1805006

reference_url	https://github.com/advisories/GHSA-rpq8-mmwh-q9hm
reference_id	GHSA-rpq8-mmwh-q9hm
reference_type
scores
url	https://github.com/advisories/GHSA-rpq8-mmwh-q9hm

reference_url	https://access.redhat.com/errata/RHSA-2020:2113
reference_id	RHSA-2020:2113
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2113

reference_url	https://access.redhat.com/errata/RHSA-2020:2511
reference_id	RHSA-2020:2511
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2511

reference_url	https://access.redhat.com/errata/RHSA-2020:2512
reference_id	RHSA-2020:2512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2512

reference_url	https://access.redhat.com/errata/RHSA-2020:2513
reference_id	RHSA-2020:2513
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2513

reference_url	https://access.redhat.com/errata/RHSA-2020:2515
reference_id	RHSA-2020:2515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2515

reference_url	https://access.redhat.com/errata/RHSA-2020:2905
reference_id	RHSA-2020:2905
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2905

reference_url	https://access.redhat.com/errata/RHSA-2020:3585
reference_id	RHSA-2020:3585
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3585

reference_url	https://access.redhat.com/errata/RHSA-2020:3637
reference_id	RHSA-2020:3637
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3637

reference_url	https://access.redhat.com/errata/RHSA-2020:3638
reference_id	RHSA-2020:3638
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3638

reference_url	https://access.redhat.com/errata/RHSA-2020:3639
reference_id	RHSA-2020:3639
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3639

reference_url	https://access.redhat.com/errata/RHSA-2020:3642
reference_id	RHSA-2020:3642
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3642

reference_url	https://access.redhat.com/errata/RHSA-2021:3140
reference_id	RHSA-2021:3140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3140

fixed_packages

url	pkg:deb/debian/mojarra@0?distro=trixie
purl	pkg:deb/debian/mojarra@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@0%3Fdistro=trixie

url	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
purl	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@2.2.8-6%3Fdistro=trixie

aliases CVE-2020-6950, GHSA-rpq8-mmwh-q9hm

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eru6-atmg-j7c1

url VCID-nhxm-rb6z-4bas

vulnerability_id VCID-nhxm-rb6z-4bas

summary

Path Traversal in Eclipse Mojarra
The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14371.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14371.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-14371

reference_id

reference_type

scores

value	0.01625
scoring_system	epss
scoring_elements	0.82167
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-14371

reference_url

https://github.com/eclipse-ee4j/mojarra/commit/1b434748d9239f42eae8aa7d37d7a0930c061e24

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/commit/1b434748d9239f42eae8aa7d37d7a0930c061e24

reference_url

https://github.com/eclipse-ee4j/mojarra/pull/4384

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/pull/4384

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-14371

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-14371

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1607709
reference_id	1607709
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1607709

reference_url	https://github.com/advisories/GHSA-43q7-q5vp-3g68
reference_id	GHSA-43q7-q5vp-3g68
reference_type
scores
url	https://github.com/advisories/GHSA-43q7-q5vp-3g68

reference_url	https://access.redhat.com/errata/RHSA-2020:2062
reference_id	RHSA-2020:2062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2062

reference_url	https://access.redhat.com/errata/RHSA-2020:2063
reference_id	RHSA-2020:2063
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2063

reference_url	https://access.redhat.com/errata/RHSA-2020:2113
reference_id	RHSA-2020:2113
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2113

reference_url	https://access.redhat.com/errata/RHSA-2020:2511
reference_id	RHSA-2020:2511
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2511

reference_url	https://access.redhat.com/errata/RHSA-2020:2512
reference_id	RHSA-2020:2512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2512

reference_url	https://access.redhat.com/errata/RHSA-2020:2513
reference_id	RHSA-2020:2513
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2513

reference_url	https://access.redhat.com/errata/RHSA-2020:2515
reference_id	RHSA-2020:2515
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2515

reference_url	https://access.redhat.com/errata/RHSA-2020:3585
reference_id	RHSA-2020:3585
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3585

fixed_packages

url	pkg:deb/debian/mojarra@0?distro=trixie
purl	pkg:deb/debian/mojarra@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@0%3Fdistro=trixie

url	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
purl	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@2.2.8-6%3Fdistro=trixie

aliases CVE-2018-14371, GHSA-43q7-q5vp-3g68

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nhxm-rb6z-4bas

url VCID-x8nf-7qzc-tqhb

vulnerability_id VCID-x8nf-7qzc-tqhb

summary

Cross-site Scripting in Eclipse Mojarra
faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces, allows Reflected XSS because a client window field is mishandled.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-17091

reference_id

reference_type

scores

value	0.05622
scoring_system	epss
scoring_elements	0.90472
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-17091

reference_url

https://bugs.eclipse.org/bugs/show_bug.cgi?id=548244

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugs.eclipse.org/bugs/show_bug.cgi?id=548244

reference_url

https://github.com/eclipse-ee4j/mojarra/commit/8f70f2bd024f00ecd5b3dcca45df73edda29dcee

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/commit/8f70f2bd024f00ecd5b3dcca45df73edda29dcee

reference_url

https://github.com/eclipse-ee4j/mojarra/commit/a3fa9573789ed5e867c43ea38374f4dbd5a8f81f

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/commit/a3fa9573789ed5e867c43ea38374f4dbd5a8f81f

reference_url

https://github.com/eclipse-ee4j/mojarra/compare/2.3.9-RELEASE...2.3.10-RELEASE

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/compare/2.3.9-RELEASE...2.3.10-RELEASE

reference_url

https://github.com/eclipse-ee4j/mojarra/files/3039198/advisory.txt

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/files/3039198/advisory.txt

reference_url

https://github.com/eclipse-ee4j/mojarra/issues/4556

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/issues/4556

reference_url

https://github.com/eclipse-ee4j/mojarra/pull/4567

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/eclipse-ee4j/mojarra/pull/4567

reference_url

https://github.com/javaserverfaces/mojarra/compare/2.2.19...2.2.20

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/javaserverfaces/mojarra/compare/2.2.19...2.2.20

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-17091

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-17091

reference_url	https://github.com/advisories/GHSA-rjhx-c9qh-qh8f
reference_id	GHSA-rjhx-c9qh-qh8f
reference_type
scores
url	https://github.com/advisories/GHSA-rjhx-c9qh-qh8f

fixed_packages

url	pkg:deb/debian/mojarra@0?distro=trixie
purl	pkg:deb/debian/mojarra@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@0%3Fdistro=trixie

url	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
purl	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@2.2.8-6%3Fdistro=trixie

aliases CVE-2019-17091, GHSA-rjhx-c9qh-qh8f

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x8nf-7qzc-tqhb

url VCID-yq2u-v26w-xqfu

vulnerability_id VCID-yq2u-v26w-xqfu

summary MyFaces: multiple directory traversal vulnerabilities allow remote attackers to read arbitrary files

references

reference_url

http://mail-archives.apache.org/mod_mbox/myfaces-announce/201202.mbox/%3C4F33ED1F.4070007%40apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://mail-archives.apache.org/mod_mbox/myfaces-announce/201202.mbox/%3C4F33ED1F.4070007%40apache.org%3E

reference_url	http://mail-archives.apache.org/mod_mbox/myfaces-dev/201202.mbox/%3C4F33ED1F.4070007@apache.org%3E
reference_id
reference_type
scores
url	http://mail-archives.apache.org/mod_mbox/myfaces-dev/201202.mbox/%3C4F33ED1F.4070007@apache.org%3E

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4367.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4367.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4367

reference_id

reference_type

scores

value	0.8592
scoring_system	epss
scoring_elements	0.99403
published_at	2026-05-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4367

reference_url

http://seclists.org/fulldisclosure/2012/Feb/150

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://seclists.org/fulldisclosure/2012/Feb/150

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/73100

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/73100

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-4367

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2011-4367

reference_url

https://web.archive.org/web/20120213042504/http://www.securityfocus.com/bid/51939

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20120213042504/http://www.securityfocus.com/bid/51939

reference_url	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4367
reference_id
reference_type
scores
url	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4367

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1866260
reference_id	1866260
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1866260

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/36681.txt
reference_id	CVE-2011-4367;OSVDB-79002
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/36681.txt

reference_url	https://www.securityfocus.com/bid/51939/info
reference_id	CVE-2011-4367;OSVDB-79002
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/51939/info

reference_url

https://github.com/advisories/GHSA-gjfx-9wx3-j6r7

reference_id

GHSA-gjfx-9wx3-j6r7

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-gjfx-9wx3-j6r7

fixed_packages

url	pkg:deb/debian/mojarra@0?distro=trixie
purl	pkg:deb/debian/mojarra@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@0%3Fdistro=trixie

url	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
purl	pkg:deb/debian/mojarra@2.2.8-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@2.2.8-6%3Fdistro=trixie

aliases CVE-2011-4367, GHSA-gjfx-9wx3-j6r7

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yq2u-v26w-xqfu

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mojarra@0%3Fdistro=trixie

Package Instance