Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/449018?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/449018?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.7.0", "type": "maven", "namespace": "io.ratpack", "name": "ratpack-core", "version": "1.7.0", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1.9.0", "latest_non_vulnerable_version": "1.9.0", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/338557?format=api", "vulnerability_id": "VCID-825b-7apu-vugk", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29485", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02483", "scoring_system": "epss", "scoring_elements": "0.85622", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02483", "scoring_system": "epss", "scoring_elements": "0.85673", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.02483", "scoring_system": "epss", "scoring_elements": "0.85683", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02483", "scoring_system": "epss", "scoring_elements": "0.85675", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29485" }, { "reference_url": "https://github.com/ratpack/ratpack", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack" }, { "reference_url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-hc33-32vw-rpp9", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-hc33-32vw-rpp9" }, { "reference_url": "https://mvnrepository.com/artifact/io.ratpack/ratpack-core", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://mvnrepository.com/artifact/io.ratpack/ratpack-core" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29485", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29485" }, { "reference_url": "https://github.com/advisories/GHSA-hc33-32vw-rpp9", "reference_id": "GHSA-hc33-32vw-rpp9", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-hc33-32vw-rpp9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/383151?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.9.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.9.0" } ], "aliases": [ "CVE-2021-29485", "GHSA-hc33-32vw-rpp9" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-825b-7apu-vugk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/338552?format=api", "vulnerability_id": "VCID-mt9y-1e9a-kycg", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29479", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45448", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45597", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45605", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45592", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29479" }, { "reference_url": "https://github.com/ratpack/ratpack", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack" }, { "reference_url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-w6rq-6h34-vh7q", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-w6rq-6h34-vh7q" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29479", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29479" }, { "reference_url": "https://portswigger.net/web-security/web-cache-poisoning", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://portswigger.net/web-security/web-cache-poisoning" }, { "reference_url": "https://github.com/advisories/GHSA-w6rq-6h34-vh7q", "reference_id": "GHSA-w6rq-6h34-vh7q", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-w6rq-6h34-vh7q" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/383151?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.9.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.9.0" } ], "aliases": [ "CVE-2021-29479", "GHSA-w6rq-6h34-vh7q" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mt9y-1e9a-kycg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/204413?format=api", "vulnerability_id": "VCID-nfs4-bftu-b3gp", "summary": "Default development error handler in Ratpack is vulnerable to HTML content injection (XSS)", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10770", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47668", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47527", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47664", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47683", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10770" }, { "reference_url": "https://github.com/ratpack/ratpack/commit/a3cbb13be1527874528c3b99fc33517c0297b6d3", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/commit/a3cbb13be1527874528c3b99fc33517c0297b6d3" }, { "reference_url": "https://snyk.io/vuln/SNYK-JAVA-IORATPACK-534882", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://snyk.io/vuln/SNYK-JAVA-IORATPACK-534882" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10770", "reference_id": "CVE-2019-10770", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10770" }, { "reference_url": "https://github.com/advisories/GHSA-r2wf-q3x4-hrv9", "reference_id": "GHSA-r2wf-q3x4-hrv9", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-r2wf-q3x4-hrv9" }, { "reference_url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-r2wf-q3x4-hrv9", "reference_id": "GHSA-r2wf-q3x4-hrv9", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-r2wf-q3x4-hrv9" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/16017?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.7.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-825b-7apu-vugk" }, { "vulnerability": "VCID-mt9y-1e9a-kycg" }, { "vulnerability": "VCID-nh7n-2uts-5qe4" }, { "vulnerability": "VCID-yzc5-ysez-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.7.6" } ], "aliases": [ "CVE-2019-10770", "GHSA-r2wf-q3x4-hrv9" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nfs4-bftu-b3gp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/338554?format=api", "vulnerability_id": "VCID-nh7n-2uts-5qe4", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29481", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.21941", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.2213", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22141", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22116", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29481" }, { "reference_url": "https://github.com/ratpack/ratpack", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack" }, { "reference_url": "https://github.com/ratpack/ratpack/pull/1590", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/pull/1590" }, { "reference_url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-phj8-4cq3-794g", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-phj8-4cq3-794g" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29481", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29481" }, { "reference_url": "https://github.com/advisories/GHSA-phj8-4cq3-794g", "reference_id": "GHSA-phj8-4cq3-794g", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-phj8-4cq3-794g" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/383151?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.9.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.9.0" } ], "aliases": [ "CVE-2021-29481", "GHSA-phj8-4cq3-794g" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nh7n-2uts-5qe4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/204167?format=api", "vulnerability_id": "VCID-sthw-2hks-mybm", "summary": "io.ratpack:ratpack-core vulnerable to Improper Neutralization of Special Elements in Output ('Injection')", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17513", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0125", "scoring_system": "epss", "scoring_elements": "0.79811", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0125", "scoring_system": "epss", "scoring_elements": "0.798", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0125", "scoring_system": "epss", "scoring_elements": "0.79735", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0125", "scoring_system": "epss", "scoring_elements": "0.79818", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-17513" }, { "reference_url": "https://github.com/ratpack/ratpack", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack" }, { "reference_url": "https://github.com/ratpack/ratpack/commit/c560a8d10cb8bdd7a526c1ca2e67c8f224ca23ae", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/commit/c560a8d10cb8bdd7a526c1ca2e67c8f224ca23ae" }, { "reference_url": "https://github.com/ratpack/ratpack/commit/efb910d38a96494256f36675ef0e5061097dd77d", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/commit/efb910d38a96494256f36675ef0e5061097dd77d" }, { "reference_url": "https://github.com/ratpack/ratpack/releases/tag/v1.7.5", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/releases/tag/v1.7.5" }, { "reference_url": "https://ratpack.io/versions/1.7.5", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://ratpack.io/versions/1.7.5" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17513", "reference_id": "CVE-2019-17513", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-17513" }, { "reference_url": "https://github.com/advisories/GHSA-mvqp-q37c-wf9j", "reference_id": "GHSA-mvqp-q37c-wf9j", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-mvqp-q37c-wf9j" }, { "reference_url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-mvqp-q37c-wf9j", "reference_id": "GHSA-mvqp-q37c-wf9j", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-mvqp-q37c-wf9j" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/15670?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.7.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-825b-7apu-vugk" }, { "vulnerability": "VCID-mt9y-1e9a-kycg" }, { "vulnerability": "VCID-nfs4-bftu-b3gp" }, { "vulnerability": "VCID-nh7n-2uts-5qe4" }, { "vulnerability": "VCID-yzc5-ysez-4ygy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.7.5" } ], "aliases": [ "CVE-2019-17513", "GHSA-mvqp-q37c-wf9j" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sthw-2hks-mybm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/338553?format=api", "vulnerability_id": "VCID-yzc5-ysez-4ygy", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29480", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00089", "scoring_system": "epss", "scoring_elements": "0.25402", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00089", "scoring_system": "epss", "scoring_elements": "0.256", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00089", "scoring_system": "epss", "scoring_elements": "0.25618", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00089", "scoring_system": "epss", "scoring_elements": "0.25603", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-29480" }, { "reference_url": "https://github.com/ratpack/ratpack", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack" }, { "reference_url": "https://github.com/ratpack/ratpack/blob/29434f7ac6fd4b36a4495429b70f4c8163100332/ratpack-session/src/main/java/ratpack/session/clientside/ClientSideSessionConfig.java#L29", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/blob/29434f7ac6fd4b36a4495429b70f4c8163100332/ratpack-session/src/main/java/ratpack/session/clientside/ClientSideSessionConfig.java#L29" }, { "reference_url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-2cc5-23r7-vc4v", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ratpack/ratpack/security/advisories/GHSA-2cc5-23r7-vc4v" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29480", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29480" }, { "reference_url": "https://github.com/advisories/GHSA-2cc5-23r7-vc4v", "reference_id": "GHSA-2cc5-23r7-vc4v", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-2cc5-23r7-vc4v" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/383151?format=api", "purl": "pkg:maven/io.ratpack/ratpack-core@1.9.0", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.9.0" } ], "aliases": [ "CVE-2021-29480", "GHSA-2cc5-23r7-vc4v" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yzc5-ysez-4ygy" } ], "fixing_vulnerabilities": [], "risk_score": "4.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.ratpack/ratpack-core@1.7.0" }