Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-5tfj-bm2b-ffhm

Summary

Jenkins Exposes Sensitive Information via API URL
The API URL computer/(master)/api/xml in Jenkins before 2.3 and LTS before 1.651.2 allows remote authenticated users with extended read permission for the master node to obtain sensitive information about the global configuration via unspecified vectors.

Aliases

alias	CVE-2016-3727

alias	GHSA-6cr3-cm5h-8q96

Fixed_packages

url	pkg:maven/org.jenkins-ci.main/jenkins-core@1.651.2
purl	pkg:maven/org.jenkins-ci.main/jenkins-core@1.651.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.651.2

url	pkg:maven/org.jenkins-ci.main/jenkins-core@2.3
purl	pkg:maven/org.jenkins-ci.main/jenkins-core@2.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@2.3

Affected_packages

url pkg:maven/org.jenkins-ci.main/jenkins-core@1.652

purl pkg:maven/org.jenkins-ci.main/jenkins-core@1.652

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-kt3k-9uyt-13d1

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jenkins-ci.main/jenkins-core@1.652

url pkg:rpm/redhat/activemq@5.9.0-6.redhat.611463?arch=el6op

purl pkg:rpm/redhat/activemq@5.9.0-6.redhat.611463?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/activemq@5.9.0-6.redhat.611463%3Farch=el6op

url pkg:rpm/redhat/ImageMagick@6.7.2.7-5?arch=el6_8

purl pkg:rpm/redhat/ImageMagick@6.7.2.7-5?arch=el6_8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2f66-aukm-nyb3

vulnerability	VCID-2t4v-16se-7qef

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-7fmu-6e6q-r7hd

vulnerability	VCID-7wrg-6pw1-nucx

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-a1z8-rynx-p7a8

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-hz8y-hdp6-t3bx

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-qc16-r3cs-cbdr

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ImageMagick@6.7.2.7-5%3Farch=el6_8

url pkg:rpm/redhat/jenkins@1.651.2-1?arch=el7

purl pkg:rpm/redhat/jenkins@1.651.2-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@1.651.2-1%3Farch=el7

url pkg:rpm/redhat/jenkins@1.651.2-1?arch=el6op

purl pkg:rpm/redhat/jenkins@1.651.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@1.651.2-1%3Farch=el6op

url pkg:rpm/redhat/jenkins-plugin-openshift-pipeline@1.0.12-1?arch=el7

purl pkg:rpm/redhat/jenkins-plugin-openshift-pipeline@1.0.12-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-plugin-openshift-pipeline@1.0.12-1%3Farch=el7

url pkg:rpm/redhat/libcgroup@0.40.rc1-18?arch=el6_8

purl pkg:rpm/redhat/libcgroup@0.40.rc1-18?arch=el6_8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libcgroup@0.40.rc1-18%3Farch=el6_8

url pkg:rpm/redhat/openshift-origin-broker@1.16.3.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-broker@1.16.3.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-broker@1.16.3.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-broker-util@1.37.6.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-broker-util@1.37.6.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-broker-util@1.37.6.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-cron@1.25.4.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-cron@1.25.4.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-cron@1.25.4.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-diy@1.26.2.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-diy@1.26.2.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-diy@1.26.2.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-haproxy@1.31.6.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-haproxy@1.31.6.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-haproxy@1.31.6.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-jbosseap@2.27.4.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-jbosseap@2.27.4.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-jbosseap@2.27.4.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-jbossews@1.35.5.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-jbossews@1.35.5.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-jbossews@1.35.5.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-jenkins@1.29.2.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-jenkins@1.29.2.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-jenkins@1.29.2.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-jenkins-client@1.26.1.1-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-jenkins-client@1.26.1.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-jenkins-client@1.26.1.1-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-mongodb@1.26.2.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-mongodb@1.26.2.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-mongodb@1.26.2.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-mysql@1.31.3.3-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-mysql@1.31.3.3-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-mysql@1.31.3.3-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-nodejs@1.33.1.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-nodejs@1.33.1.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-nodejs@1.33.1.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-perl@1.30.2.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-perl@1.30.2.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-perl@1.30.2.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-php@1.35.4.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-php@1.35.4.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-php@1.35.4.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-python@1.34.3.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-python@1.34.3.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-python@1.34.3.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-cartridge-ruby@1.32.2.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-cartridge-ruby@1.32.2.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-cartridge-ruby@1.32.2.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-msg-node-mcollective@1.30.2.2-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-msg-node-mcollective@1.30.2.2-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-msg-node-mcollective@1.30.2.2-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-node-proxy@1.26.3.1-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-node-proxy@1.26.3.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-node-proxy@1.26.3.1-1%3Farch=el6op

url pkg:rpm/redhat/openshift-origin-node-util@1.38.7.1-1?arch=el6op

purl pkg:rpm/redhat/openshift-origin-node-util@1.38.7.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/openshift-origin-node-util@1.38.7.1-1%3Farch=el6op

url pkg:rpm/redhat/rhc@1.38.7.1-1?arch=el6op

purl pkg:rpm/redhat/rhc@1.38.7.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhc@1.38.7.1-1%3Farch=el6op

url pkg:rpm/redhat/rubygem-openshift-origin-admin-console@1.28.2.1-1?arch=el6op

purl pkg:rpm/redhat/rubygem-openshift-origin-admin-console@1.28.2.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-openshift-origin-admin-console@1.28.2.1-1%3Farch=el6op

url pkg:rpm/redhat/rubygem-openshift-origin-controller@1.38.6.4-1?arch=el6op

purl pkg:rpm/redhat/rubygem-openshift-origin-controller@1.38.6.4-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-openshift-origin-controller@1.38.6.4-1%3Farch=el6op

url pkg:rpm/redhat/rubygem-openshift-origin-frontend-haproxy-sni-proxy@0.5.2.1-1?arch=el6op

purl pkg:rpm/redhat/rubygem-openshift-origin-frontend-haproxy-sni-proxy@0.5.2.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-openshift-origin-frontend-haproxy-sni-proxy@0.5.2.1-1%3Farch=el6op

url pkg:rpm/redhat/rubygem-openshift-origin-msg-broker-mcollective@1.36.2.4-1?arch=el6op

purl pkg:rpm/redhat/rubygem-openshift-origin-msg-broker-mcollective@1.36.2.4-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-openshift-origin-msg-broker-mcollective@1.36.2.4-1%3Farch=el6op

url pkg:rpm/redhat/rubygem-openshift-origin-node@1.38.6.4-1?arch=el6op

purl pkg:rpm/redhat/rubygem-openshift-origin-node@1.38.6.4-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-openshift-origin-node@1.38.6.4-1%3Farch=el6op

url pkg:rpm/redhat/rubygem-openshift-origin-routing-daemon@0.26.6.1-1?arch=el6op

purl pkg:rpm/redhat/rubygem-openshift-origin-routing-daemon@0.26.6.1-1?arch=el6op

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-32uq-r1e7-3ub4

vulnerability	VCID-3bxq-vmjj-kqfe

vulnerability	VCID-3keu-g1gc-kyhf

vulnerability	VCID-4tt7-hwz7-nfhf

vulnerability	VCID-5tfj-bm2b-ffhm

vulnerability	VCID-891k-xz71-guc5

vulnerability	VCID-8y2p-df9x-a7cp

vulnerability	VCID-b69p-t71y-hbhd

vulnerability	VCID-jaty-3r2s-pqc2

vulnerability	VCID-kt3k-9uyt-13d1

vulnerability	VCID-p7v4-63fw-kqaj

vulnerability	VCID-puux-2z74-3yea

vulnerability	VCID-y5vs-8bqz-sqf5

vulnerability	VCID-yvec-gpmh-73hq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-openshift-origin-routing-daemon@0.26.6.1-1%3Farch=el6op

References

reference_url

http://rhn.redhat.com/errata/RHSA-2016-1773.html

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2016-1773.html

reference_url

https://access.redhat.com/errata/RHSA-2016:1206

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2016:1206

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3727.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-3727.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-3727

reference_id

reference_type

scores

value	0.0009
scoring_system	epss
scoring_elements	0.25476
published_at	2026-04-11T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25539
published_at	2026-04-02T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25387
published_at	2026-04-16T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.2538
published_at	2026-04-13T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25434
published_at	2026-04-12T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25576
published_at	2026-04-04T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25473
published_at	2026-04-01T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25464
published_at	2026-04-09T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25417
published_at	2026-04-08T12:55:00Z

value	0.0009
scoring_system	epss
scoring_elements	0.25349
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-3727

reference_url

https://github.com/jenkinsci/jenkins

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/jenkinsci/jenkins

reference_url

https://github.com/jenkinsci/jenkins/commit/d66ad6f3ee46a5c6bb865bb831e8cdfc74cd7eb3

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/jenkinsci/jenkins/commit/d66ad6f3ee46a5c6bb865bb831e8cdfc74cd7eb3

reference_url

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-05-11

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2016-05-11

reference_url

https://www.cloudbees.com/jenkins-security-advisory-2016-05-11

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.cloudbees.com/jenkins-security-advisory-2016-05-11

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1335422
reference_id	1335422
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1335422

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins::::::::
reference_id	cpe:2.3:a:jenkins:jenkins::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins:::::lts:::*
reference_id	cpe:2.3:a:jenkins:jenkins:::::lts:::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:jenkins:jenkins:::::lts:::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.1::::enterprise:::
reference_id	cpe:2.3:a:redhat:openshift:3.1::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.1::::enterprise:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.2::::enterprise:::
reference_id	cpe:2.3:a:redhat:openshift:3.2::::enterprise:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift:3.2::::enterprise:::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-3727

reference_id

CVE-2016-3727

reference_type

scores

value	4.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:P/I:N/A:N

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-3727

reference_url

https://github.com/advisories/GHSA-6cr3-cm5h-8q96

reference_id

GHSA-6cr3-cm5h-8q96

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-6cr3-cm5h-8q96

reference_url	https://access.redhat.com/errata/RHSA-2016:1773
reference_id	RHSA-2016:1773
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1773

Weaknesses

cwe_id	200
name	Exposure of Sensitive Information to an Unauthorized Actor
description	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5tfj-bm2b-ffhm

Vulnerability Instance