Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/108560?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/108560?format=api", "vulnerability_id": "VCID-zz3r-vfeq-wbd3", "summary": "codehaus: incomplete fix for unsafe deserialization in jackson-databind vulnerabilities", "aliases": [ { "alias": "CVE-2019-10202" }, { "alias": "GHSA-c27h-mcmw-48hv" } ], "fixed_packages": [], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/583411?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/583412?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/583413?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/583414?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/583415?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583416?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583417?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583418?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583419?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@0.9.9-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/583420?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583421?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583422?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583423?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583424?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583425?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583426?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583427?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583428?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583429?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583430?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583431?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583432?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.3.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583433?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583434?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583435?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583436?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583437?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583438?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583439?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583440?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583441?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583442?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583443?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583444?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583445?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/583446?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/583447?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.5.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/583448?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583449?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583450?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583451?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583452?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583453?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583454?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/583455?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/583456?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.6.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/583457?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583458?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583459?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583460?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583461?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583462?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583463?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/583464?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/583465?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/583466?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.7.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/583467?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/583468?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/583469?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/583470?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/583471?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/583472?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/583473?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/583474?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/583475?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/583476?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/583477?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/583478?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.8.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/76201?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244297?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244298?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244299?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244300?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/244301?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/244302?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/244303?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/244304?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/244305?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/244306?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/244307?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/244308?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/76202?format=api", "purl": "pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ejh5-re54-17hp" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jackson/jackson-mapper-asl@1.9.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/143217?format=api", "purl": "pkg:rpm/redhat/eap7-codehaus-jackson@1.9.13-9.redhat_00006.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4gjh-hhzw-jyda" }, { "vulnerability": "VCID-62jb-3d7y-y7ae" }, { "vulnerability": "VCID-7pd3-dre3-wug9" }, { "vulnerability": "VCID-9f4g-mzbu-4qhh" }, { "vulnerability": "VCID-huxh-yrbr-s7bt" }, { "vulnerability": "VCID-p52x-ese3-qkha" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-codehaus-jackson@1.9.13-9.redhat_00006.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/143218?format=api", "purl": "pkg:rpm/redhat/eap7-codehaus-jackson@1.9.13-9.redhat_00006.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4gjh-hhzw-jyda" }, { "vulnerability": "VCID-62jb-3d7y-y7ae" }, { "vulnerability": "VCID-7pd3-dre3-wug9" }, { "vulnerability": "VCID-9f4g-mzbu-4qhh" }, { "vulnerability": "VCID-huxh-yrbr-s7bt" }, { "vulnerability": "VCID-p52x-ese3-qkha" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-codehaus-jackson@1.9.13-9.redhat_00006.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/143219?format=api", "purl": "pkg:rpm/redhat/eap7-codehaus-jackson@1.9.13-9.redhat_00006.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-4gjh-hhzw-jyda" }, { "vulnerability": "VCID-62jb-3d7y-y7ae" }, { "vulnerability": "VCID-7pd3-dre3-wug9" }, { "vulnerability": "VCID-9f4g-mzbu-4qhh" }, { "vulnerability": "VCID-huxh-yrbr-s7bt" }, { "vulnerability": "VCID-p52x-ese3-qkha" }, { "vulnerability": "VCID-zz3r-vfeq-wbd3" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-codehaus-jackson@1.9.13-9.redhat_00006.1%3Farch=el6eap" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10202.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10202.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10202", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07423", "scoring_system": "epss", "scoring_elements": "0.91898", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.07423", "scoring_system": "epss", "scoring_elements": "0.91886", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-10202" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10202", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10202" }, { "reference_url": "https://lists.apache.org/thread.html/r0fbf2c60967bc9f73d7f5a62ad3b955789f9a14b950f42e99fca9b4e@%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0fbf2c60967bc9f73d7f5a62ad3b955789f9a14b950f42e99fca9b4e@%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0fbf2c60967bc9f73d7f5a62ad3b955789f9a14b950f42e99fca9b4e%40%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0fbf2c60967bc9f73d7f5a62ad3b955789f9a14b950f42e99fca9b4e%40%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1edabcfacdad42d3c830464e9cf07a9a489059a7b7a8642cf055542d@%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r1edabcfacdad42d3c830464e9cf07a9a489059a7b7a8642cf055542d@%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1edabcfacdad42d3c830464e9cf07a9a489059a7b7a8642cf055542d%40%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r1edabcfacdad42d3c830464e9cf07a9a489059a7b7a8642cf055542d%40%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r356592d9874ab4bc9da4754592f8aa6edc894c95e17e58484bc2af7a@%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r356592d9874ab4bc9da4754592f8aa6edc894c95e17e58484bc2af7a@%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r356592d9874ab4bc9da4754592f8aa6edc894c95e17e58484bc2af7a%40%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r356592d9874ab4bc9da4754592f8aa6edc894c95e17e58484bc2af7a%40%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r500867b74f42230a3d65b8aec31fc93ac390eeae737c91a759ab94cb@%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r500867b74f42230a3d65b8aec31fc93ac390eeae737c91a759ab94cb@%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r500867b74f42230a3d65b8aec31fc93ac390eeae737c91a759ab94cb%40%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r500867b74f42230a3d65b8aec31fc93ac390eeae737c91a759ab94cb%40%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5f16a1bd31a7e94ca78eda686179930781aa3a4a990cd55986703581@%3Cdev.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r5f16a1bd31a7e94ca78eda686179930781aa3a4a990cd55986703581@%3Cdev.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5f16a1bd31a7e94ca78eda686179930781aa3a4a990cd55986703581%40%3Cdev.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r5f16a1bd31a7e94ca78eda686179930781aa3a4a990cd55986703581%40%3Cdev.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r6dea2a887f5eb1d68f124d64b14cd1a04f682f06de8cd01b7e4214e0@%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r6dea2a887f5eb1d68f124d64b14cd1a04f682f06de8cd01b7e4214e0@%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r6dea2a887f5eb1d68f124d64b14cd1a04f682f06de8cd01b7e4214e0%40%3Cissues.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r6dea2a887f5eb1d68f124d64b14cd1a04f682f06de8cd01b7e4214e0%40%3Cissues.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rce00a1c60f7df4b10e72fa87827c102f55b074bb91993631df2c21f9@%3Cdev.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rce00a1c60f7df4b10e72fa87827c102f55b074bb91993631df2c21f9@%3Cdev.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rce00a1c60f7df4b10e72fa87827c102f55b074bb91993631df2c21f9%40%3Cdev.hive.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rce00a1c60f7df4b10e72fa87827c102f55b074bb91993631df2c21f9%40%3Cdev.hive.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/refea6018a2c4e9eb7838cab567ed219c3f726dcd83a5472fbb80d8d9@%3Cissues.flume.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/refea6018a2c4e9eb7838cab567ed219c3f726dcd83a5472fbb80d8d9@%3Cissues.flume.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/refea6018a2c4e9eb7838cab567ed219c3f726dcd83a5472fbb80d8d9%40%3Cissues.flume.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/refea6018a2c4e9eb7838cab567ed219c3f726dcd83a5472fbb80d8d9%40%3Cissues.flume.apache.org%3E" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10202", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10202" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1731271", "reference_id": "1731271", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1731271" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5568", "reference_id": "RHSA-2020:5568", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5568" } ], "weaknesses": [ { "cwe_id": 502, "name": "Deserialization of Untrusted Data", "description": "The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "8.1 - 10.0", "exploitability": "0.5", "weighted_severity": "9.0", "risk_score": 4.5, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zz3r-vfeq-wbd3" }