Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-469b-j213-6ufk
Summary
Undertow Uncontrolled Resource Consumption Vulnerability
A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Whenever a malicious user opens and closes a connection with the HTTP port of the server and then closes the connection immediately, the server will end with both memory and open file limits exhausted at some point, depending on the amount of memory available. 

At HTTP upgrade to remoting, the WriteTimeoutStreamSinkConduit leaks connections if RemotingConnection is closed by Remoting ServerConnectionOpenListener. Because the remoting connection originates in Undertow as part of the HTTP upgrade, there is an external layer to the remoting connection. This connection is unaware of the outermost layer when closing the connection during the connection opening procedure. Hence, the Undertow WriteTimeoutStreamSinkConduit is not notified of the closed connection in this scenario. Because WriteTimeoutStreamSinkConduit creates a timeout task, the whole dependency tree leaks via that task, which is added to XNIO WorkerThread. So, the workerThread points to the Undertow conduit, which contains the connections and causes the leak.
Aliases
0
alias CVE-2024-1635
1
alias GHSA-w6qf-42m7-vh68
Fixed_packages
0
url pkg:deb/debian/undertow@2.3.18-1?distro=sid
purl pkg:deb/debian/undertow@2.3.18-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/undertow@2.3.18-1%3Fdistro=sid
1
url pkg:deb/debian/undertow@2.3.20-1?distro=sid
purl pkg:deb/debian/undertow@2.3.20-1?distro=sid
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/undertow@2.3.20-1%3Fdistro=sid
2
url pkg:maven/io.undertow/undertow-core@2.2.31.Final
purl pkg:maven/io.undertow/undertow-core@2.2.31.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-5585-a76n-zubf
2
vulnerability VCID-ns3p-22xg-q3bz
3
vulnerability VCID-xme8-usmd-vqg3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.2.31.Final
3
url pkg:maven/io.undertow/undertow-core@2.3.12.Final
purl pkg:maven/io.undertow/undertow-core@2.3.12.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-ns3p-22xg-q3bz
2
vulnerability VCID-xme8-usmd-vqg3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.3.12.Final
Affected_packages
0
url pkg:maven/io.undertow/undertow-core@2.3.0.Final
purl pkg:maven/io.undertow/undertow-core@2.3.0.Final
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-2cv5-9v62-kfbm
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-4v1f-kt5y-w7d1
4
vulnerability VCID-5585-a76n-zubf
5
vulnerability VCID-93ut-2de3-ckc5
6
vulnerability VCID-ns3p-22xg-q3bz
7
vulnerability VCID-usz2-tufg-k7gz
8
vulnerability VCID-xftw-raz7-b7e1
9
vulnerability VCID-xme8-usmd-vqg3
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/io.undertow/undertow-core@2.3.0.Final
1
url pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7%3Farch=el7
2
url pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7%3Farch=el7
3
url pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-3.redhat_00006.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-3.redhat_00006.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-annotations@2.10.4-3.redhat_00006.1%3Farch=el7eap
4
url pkg:rpm/redhat/eap7-jackson-core@2.10.4-3.redhat_00006.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jackson-core@2.10.4-3.redhat_00006.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-core@2.10.4-3.redhat_00006.1%3Farch=el7eap
5
url pkg:rpm/redhat/eap7-jackson-databind@2.10.4-5.redhat_00006.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jackson-databind@2.10.4-5.redhat_00006.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-databind@2.10.4-5.redhat_00006.1%3Farch=el7eap
6
url pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.10.4-3.redhat_00006.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.10.4-3.redhat_00006.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-jaxrs-providers@2.10.4-3.redhat_00006.1%3Farch=el7eap
7
url pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-5.redhat_00006.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-5.redhat_00006.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-modules-base@2.10.4-5.redhat_00006.1%3Farch=el7eap
8
url pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00006.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00006.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00006.1%3Farch=el7eap
9
url pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-16.Final_redhat_00017.1?arch=el7eap
purl pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-16.Final_redhat_00017.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-16.Final_redhat_00017.1%3Farch=el7eap
10
url pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7%3Farch=el7
11
url pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7%3Farch=el7
12
url pkg:rpm/redhat/eap7-netty@4.1.63-5.Final_redhat_00003.1?arch=el7eap
purl pkg:rpm/redhat/eap7-netty@4.1.63-5.Final_redhat_00003.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-netty@4.1.63-5.Final_redhat_00003.1%3Farch=el7eap
13
url pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7%3Farch=el7
14
url pkg:rpm/redhat/eap7-undertow@2.0.41-4.SP5_redhat_00001.1?arch=el7eap
purl pkg:rpm/redhat/eap7-undertow@2.0.41-4.SP5_redhat_00001.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.0.41-4.SP5_redhat_00001.1%3Farch=el7eap
15
url pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1?arch=el7eap
purl pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-2cv5-9v62-kfbm
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-d3ty-z2dg-vka1
4
vulnerability VCID-jzn6-bzzf-nugp
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1%3Farch=el7eap
16
url pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1?arch=el8eap
purl pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1?arch=el8eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-2cv5-9v62-kfbm
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-d3ty-z2dg-vka1
4
vulnerability VCID-jzn6-bzzf-nugp
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1%3Farch=el8eap
17
url pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1?arch=el9eap
purl pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1?arch=el9eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-2cv5-9v62-kfbm
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-d3ty-z2dg-vka1
4
vulnerability VCID-jzn6-bzzf-nugp
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.2.30-1.SP1_redhat_00001.1%3Farch=el9eap
18
url pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7%3Farch=el7
19
url pkg:rpm/redhat/eap7-wildfly@7.3.14-3.GA_redhat_00002.1?arch=el7eap
purl pkg:rpm/redhat/eap7-wildfly@7.3.14-3.GA_redhat_00002.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.3.14-3.GA_redhat_00002.1%3Farch=el7eap
20
url pkg:rpm/redhat/eap7-wildfly-elytron@1.10.17-1.Final_redhat_00001.1?arch=el7eap
purl pkg:rpm/redhat/eap7-wildfly-elytron@1.10.17-1.Final_redhat_00001.1?arch=el7eap
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1vrj-chs2-d3ab
1
vulnerability VCID-469b-j213-6ufk
2
vulnerability VCID-5585-a76n-zubf
3
vulnerability VCID-62gn-nwup-8uat
4
vulnerability VCID-6ssa-j1q1-c3cs
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-8p4t-8f51-h3dc
7
vulnerability VCID-93ut-2de3-ckc5
8
vulnerability VCID-9p6a-t8zz-jkfd
9
vulnerability VCID-jz3d-vvfb-jfbw
10
vulnerability VCID-usz2-tufg-k7gz
11
vulnerability VCID-v6ek-y7cn-kycd
12
vulnerability VCID-xftw-raz7-b7e1
13
vulnerability VCID-xyc4-63ra-mfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.10.17-1.Final_redhat_00001.1%3Farch=el7eap
21
url pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7%3Farch=el7
22
url pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7?arch=el7
purl pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7?arch=el7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-14ff-vn3t-vyhy
1
vulnerability VCID-1vrj-chs2-d3ab
2
vulnerability VCID-469b-j213-6ufk
3
vulnerability VCID-46y3-rx34-pyc6
4
vulnerability VCID-4rxk-nhwr-ffad
5
vulnerability VCID-7yc7-e35f-8uhj
6
vulnerability VCID-93ut-2de3-ckc5
7
vulnerability VCID-cf5j-2dz8-7bbu
8
vulnerability VCID-e3vc-jpft-gye7
9
vulnerability VCID-hqzr-vc5w-9ff5
10
vulnerability VCID-kexn-gjxj-uudm
11
vulnerability VCID-mm3e-4pej-byed
12
vulnerability VCID-nfjb-tkzv-fudg
13
vulnerability VCID-sqx4-euc2-myew
14
vulnerability VCID-usz2-tufg-k7gz
15
vulnerability VCID-xftw-raz7-b7e1
16
vulnerability VCID-zy5r-wxv8-g3e8
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7%3Farch=el7
23
url pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1?arch=el9sso
purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1?arch=el9sso
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-469b-j213-6ufk
1
vulnerability VCID-9wzh-7ych-y7c6
2
vulnerability VCID-ju1d-vwgb-bqbn
3
vulnerability VCID-sgbm-r5mm-sbbx
4
vulnerability VCID-z2bw-n4x2-a7gj
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1%3Farch=el9sso
24
url pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1?arch=el7sso
purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1?arch=el7sso
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-469b-j213-6ufk
1
vulnerability VCID-9wzh-7ych-y7c6
2
vulnerability VCID-ju1d-vwgb-bqbn
3
vulnerability VCID-sgbm-r5mm-sbbx
4
vulnerability VCID-z2bw-n4x2-a7gj
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1%3Farch=el7sso
25
url pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1?arch=el8sso
purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1?arch=el8sso
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-469b-j213-6ufk
1
vulnerability VCID-9wzh-7ych-y7c6
2
vulnerability VCID-ju1d-vwgb-bqbn
3
vulnerability VCID-sgbm-r5mm-sbbx
4
vulnerability VCID-z2bw-n4x2-a7gj
resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.13-1.redhat_00001.1%3Farch=el8sso
References
0
reference_url https://access.redhat.com/errata/RHSA-2024:1674
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1674
1
reference_url https://access.redhat.com/errata/RHSA-2024:1675
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1675
2
reference_url https://access.redhat.com/errata/RHSA-2024:1676
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1676
3
reference_url https://access.redhat.com/errata/RHSA-2024:1677
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1677
4
reference_url https://access.redhat.com/errata/RHSA-2024:1860
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1860
5
reference_url https://access.redhat.com/errata/RHSA-2024:1861
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1861
6
reference_url https://access.redhat.com/errata/RHSA-2024:1862
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1862
7
reference_url https://access.redhat.com/errata/RHSA-2024:1864
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1864
8
reference_url https://access.redhat.com/errata/RHSA-2024:1866
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:1866
9
reference_url https://access.redhat.com/errata/RHSA-2024:3354
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:3354
10
reference_url https://access.redhat.com/errata/RHSA-2024:4884
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2024:4884
11
reference_url https://access.redhat.com/errata/RHSA-2025:4226
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/errata/RHSA-2025:4226
12
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1635.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-1635.json
13
reference_url https://access.redhat.com/security/cve/CVE-2024-1635
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://access.redhat.com/security/cve/CVE-2024-1635
14
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-1635
reference_id
reference_type
scores
0
value 0.22688
scoring_system epss
scoring_elements 0.95874
published_at 2026-04-16T12:55:00Z
1
value 0.22688
scoring_system epss
scoring_elements 0.95846
published_at 2026-04-07T12:55:00Z
2
value 0.22688
scoring_system epss
scoring_elements 0.95855
published_at 2026-04-08T12:55:00Z
3
value 0.22688
scoring_system epss
scoring_elements 0.95858
published_at 2026-04-09T12:55:00Z
4
value 0.22688
scoring_system epss
scoring_elements 0.95861
published_at 2026-04-12T12:55:00Z
5
value 0.22688
scoring_system epss
scoring_elements 0.95862
published_at 2026-04-13T12:55:00Z
6
value 0.23144
scoring_system epss
scoring_elements 0.95909
published_at 2026-04-04T12:55:00Z
7
value 0.23144
scoring_system epss
scoring_elements 0.959
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-1635
15
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2264928
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-22T16:54:05Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2264928
16
reference_url https://github.com/undertow-io/undertow
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow
17
reference_url https://github.com/undertow-io/undertow/commit/3cdb104e225f34547ce9fd6eb8799eb68e040f19
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow/commit/3cdb104e225f34547ce9fd6eb8799eb68e040f19
18
reference_url https://github.com/undertow-io/undertow/commit/7d388c5aae9b82afb63f24e3b6a2044838dfb4de
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/undertow-io/undertow/commit/7d388c5aae9b82afb63f24e3b6a2044838dfb4de
19
reference_url https://nvd.nist.gov/vuln/detail/CVE-2024-1635
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2024-1635
20
reference_url https://security.netapp.com/advisory/ntap-20240322-0007
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value 8.7
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://security.netapp.com/advisory/ntap-20240322-0007
21
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068817
reference_id 1068817
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068817
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:amq_streams:1
reference_id cpe:/a:redhat:amq_streams:1
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:amq_streams:1
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:apache_camel_spring_boot:4.4::el6
reference_id cpe:/a:redhat:apache_camel_spring_boot:4.4::el6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:apache_camel_spring_boot:4.4::el6
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:build_keycloak:
reference_id cpe:/a:redhat:build_keycloak:
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:build_keycloak:
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_quarkus:2
reference_id cpe:/a:redhat:camel_quarkus:2
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_quarkus:2
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_quarkus:3
reference_id cpe:/a:redhat:camel_quarkus:3
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_quarkus:3
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_spring_boot:3
reference_id cpe:/a:redhat:camel_spring_boot:3
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_spring_boot:3
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_spring_boot:4
reference_id cpe:/a:redhat:camel_spring_boot:4
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:camel_spring_boot:4
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:integration:1
reference_id cpe:/a:redhat:integration:1
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:integration:1
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_data_grid:7
reference_id cpe:/a:redhat:jboss_data_grid:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_data_grid:7
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_data_grid:8
reference_id cpe:/a:redhat:jboss_data_grid:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_data_grid:8
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4
reference_id cpe:/a:redhat:jboss_enterprise_application_platform:7.4
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7
reference_id cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8
reference_id cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9
reference_id cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:8
reference_id cpe:/a:redhat:jboss_enterprise_application_platform:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:8
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7
reference_id cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.1::el7
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7
reference_id cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform_eus:7.3::el7
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_bpms_platform:7
reference_id cpe:/a:redhat:jboss_enterprise_bpms_platform:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_bpms_platform:7
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_fuse:7
reference_id cpe:/a:redhat:jboss_fuse:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_fuse:7
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_fuse_service_works:6
reference_id cpe:/a:redhat:jboss_fuse_service_works:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_fuse_service_works:6
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:optaplanner:::el6
reference_id cpe:/a:redhat:optaplanner:::el6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:optaplanner:::el6
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:quarkus:2
reference_id cpe:/a:redhat:quarkus:2
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:quarkus:2
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:quarkus:3
reference_id cpe:/a:redhat:quarkus:3
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:quarkus:3
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6
reference_id cpe:/a:redhat:red_hat_single_sign_on:7.6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6::el7
reference_id cpe:/a:redhat:red_hat_single_sign_on:7.6::el7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6::el7
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6::el8
reference_id cpe:/a:redhat:red_hat_single_sign_on:7.6::el8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6::el8
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6::el9
reference_id cpe:/a:redhat:red_hat_single_sign_on:7.6::el9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:red_hat_single_sign_on:7.6::el9
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhosemc:1.0::el8
reference_id cpe:/a:redhat:rhosemc:1.0::el8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhosemc:1.0::el8
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:serverless:1
reference_id cpe:/a:redhat:serverless:1
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:serverless:1
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:service_registry:2
reference_id cpe:/a:redhat:service_registry:2
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:service_registry:2
52
reference_url https://github.com/advisories/GHSA-w6qf-42m7-vh68
reference_id GHSA-w6qf-42m7-vh68
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-w6qf-42m7-vh68
Weaknesses
0
cwe_id 400
name Uncontrolled Resource Consumption
description The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.
1
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
2
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
Exploits
Severity_range_score7.0 - 8.9
Exploitability0.5
Weighted_severity8.0
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-469b-j213-6ufk