Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-k3hu-vqn3-yuaj

Summary

Apache CXF allows unrestricted memory consumption in CXF HTTP clients
In versions of Apache CXF before 3.6.4 and 4.0.5 (3.5.x and lower versions are not impacted), a CXF HTTP client conduit may prevent HTTPClient instances from being garbage collected and it is possible that memory consumption will continue to increase, eventually causing the application to run  out of memory

Aliases

alias	CVE-2024-41172

alias	GHSA-4mgg-fqfq-64hg

Fixed_packages

url	pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.4
purl	pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.4

url	pkg:maven/org.apache.cxf/cxf-rt-transports-http@4.0.5
purl	pkg:maven/org.apache.cxf/cxf-rt-transports-http@4.0.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-transports-http@4.0.5

Affected_packages

url pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.0

purl pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-k3hu-vqn3-yuaj

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.0

url pkg:maven/org.apache.cxf/cxf-rt-transports-http@4.0.0

purl pkg:maven/org.apache.cxf/cxf-rt-transports-http@4.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-k3hu-vqn3-yuaj

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-transports-http@4.0.0

url pkg:rpm/redhat/eap8-activemq-artemis@2.33.0-1.redhat_00015.1?arch=el9eap

purl pkg:rpm/redhat/eap8-activemq-artemis@2.33.0-1.redhat_00015.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-activemq-artemis@2.33.0-1.redhat_00015.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-activemq-artemis@2.33.0-1.redhat_00015.1?arch=el8eap

purl pkg:rpm/redhat/eap8-activemq-artemis@2.33.0-1.redhat_00015.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-activemq-artemis@2.33.0-1.redhat_00015.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-activemq-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el8eap

purl pkg:rpm/redhat/eap8-activemq-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-activemq-artemis-native@1:2.0.0-2.redhat_00005.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-activemq-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el9eap

purl pkg:rpm/redhat/eap8-activemq-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-activemq-artemis-native@1:2.0.0-2.redhat_00005.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-aesh-extensions@1.8.0-2.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-aesh-extensions@1.8.0-2.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-aesh-extensions@1.8.0-2.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-aesh-extensions@1.8.0-2.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-aesh-extensions@1.8.0-2.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-aesh-extensions@1.8.0-2.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-aesh-readline@2.2.0-2.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-aesh-readline@2.2.0-2.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-aesh-readline@2.2.0-2.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-aesh-readline@2.2.0-2.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-aesh-readline@2.2.0-2.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-aesh-readline@2.2.0-2.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-apache-commons-codec@1.16.1-2.redhat_00007.1?arch=el9eap

purl pkg:rpm/redhat/eap8-apache-commons-codec@1.16.1-2.redhat_00007.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-codec@1.16.1-2.redhat_00007.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-apache-commons-codec@1.16.1-2.redhat_00007.1?arch=el8eap

purl pkg:rpm/redhat/eap8-apache-commons-codec@1.16.1-2.redhat_00007.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-codec@1.16.1-2.redhat_00007.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-apache-commons-collections@3.2.2-28.redhat_2.1?arch=el9eap

purl pkg:rpm/redhat/eap8-apache-commons-collections@3.2.2-28.redhat_2.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-collections@3.2.2-28.redhat_2.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-apache-commons-collections@3.2.2-28.redhat_2.1?arch=el8eap

purl pkg:rpm/redhat/eap8-apache-commons-collections@3.2.2-28.redhat_2.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-collections@3.2.2-28.redhat_2.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-apache-commons-io@2.15.1-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-apache-commons-io@2.15.1-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-io@2.15.1-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-apache-commons-io@2.15.1-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-apache-commons-io@2.15.1-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-io@2.15.1-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-apache-commons-lang@3.14.0-2.redhat_00006.1?arch=el9eap

purl pkg:rpm/redhat/eap8-apache-commons-lang@3.14.0-2.redhat_00006.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-lang@3.14.0-2.redhat_00006.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-apache-commons-lang@3.14.0-2.redhat_00006.1?arch=el8eap

purl pkg:rpm/redhat/eap8-apache-commons-lang@3.14.0-2.redhat_00006.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-commons-lang@3.14.0-2.redhat_00006.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-apache-cxf@4.0.5-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-apache-cxf@4.0.5-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-cxf@4.0.5-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-apache-cxf@4.0.5-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-apache-cxf@4.0.5-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-apache-cxf@4.0.5-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el8eap

purl pkg:rpm/redhat/eap8-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-artemis-native@1:2.0.0-2.redhat_00005.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el9eap

purl pkg:rpm/redhat/eap8-artemis-native@1:2.0.0-2.redhat_00005.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-artemis-native@1:2.0.0-2.redhat_00005.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-artemis-wildfly-integration@2.0.1-1.redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap8-artemis-wildfly-integration@2.0.1-1.redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-artemis-wildfly-integration@2.0.1-1.redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-artemis-wildfly-integration@2.0.1-1.redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap8-artemis-wildfly-integration@2.0.1-1.redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-artemis-wildfly-integration@2.0.1-1.redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-asyncutil@0.1.0-2.redhat_00010.1?arch=el9eap

purl pkg:rpm/redhat/eap8-asyncutil@0.1.0-2.redhat_00010.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-asyncutil@0.1.0-2.redhat_00010.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-asyncutil@0.1.0-2.redhat_00010.1?arch=el8eap

purl pkg:rpm/redhat/eap8-asyncutil@0.1.0-2.redhat_00010.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-asyncutil@0.1.0-2.redhat_00010.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-aws-java-sdk@1.12.284-2.redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap8-aws-java-sdk@1.12.284-2.redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-aws-java-sdk@1.12.284-2.redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-aws-java-sdk@1.12.284-2.redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap8-aws-java-sdk@1.12.284-2.redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-aws-java-sdk@1.12.284-2.redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-cryptacular@1.2.5-2.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-cryptacular@1.2.5-2.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-cryptacular@1.2.5-2.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-cryptacular@1.2.5-2.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-cryptacular@1.2.5-2.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-cryptacular@1.2.5-2.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-eap-product-conf-parent@800.4.0-1.GA_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-eap-product-conf-parent@800.4.0-1.GA_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-eap-product-conf-parent@800.4.0-1.GA_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-eap-product-conf-parent@800.4.0-1.GA_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-eap-product-conf-parent@800.4.0-1.GA_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-eap-product-conf-parent@800.4.0-1.GA_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-fastinfoset@2.1.0-4.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-fastinfoset@2.1.0-4.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-fastinfoset@2.1.0-4.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-fastinfoset@2.1.0-4.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-fastinfoset@2.1.0-4.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-fastinfoset@2.1.0-4.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-hibernate@6.2.31-1.Final_redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap8-hibernate@6.2.31-1.Final_redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-hibernate@6.2.31-1.Final_redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-hibernate@6.2.31-1.Final_redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap8-hibernate@6.2.31-1.Final_redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-hibernate@6.2.31-1.Final_redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-hibernate-validator@8.0.1-3.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-hibernate-validator@8.0.1-3.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-hibernate-validator@8.0.1-3.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-hibernate-validator@8.0.1-3.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-hibernate-validator@8.0.1-3.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-hibernate-validator@8.0.1-3.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-hppc@0.8.1-2.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-hppc@0.8.1-2.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-hppc@0.8.1-2.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-hppc@0.8.1-2.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-hppc@0.8.1-2.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-hppc@0.8.1-2.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-insights-java-client@1.1.3-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-insights-java-client@1.1.3-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-insights-java-client@1.1.3-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-insights-java-client@1.1.3-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-insights-java-client@1.1.3-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-insights-java-client@1.1.3-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-jakarta-servlet-jsp-jstl-api@3.0.1-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-jakarta-servlet-jsp-jstl-api@3.0.1-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jakarta-servlet-jsp-jstl-api@3.0.1-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-jakarta-servlet-jsp-jstl-api@3.0.1-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-jakarta-servlet-jsp-jstl-api@3.0.1-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jakarta-servlet-jsp-jstl-api@3.0.1-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-jboss-cert-helper@1.1.3-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-jboss-cert-helper@1.1.3-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jboss-cert-helper@1.1.3-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-jboss-cert-helper@1.1.3-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-jboss-cert-helper@1.1.3-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jboss-cert-helper@1.1.3-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-jboss-logging@3.5.3-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-jboss-logging@3.5.3-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jboss-logging@3.5.3-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-jboss-logging@3.5.3-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-jboss-logging@3.5.3-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jboss-logging@3.5.3-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-jctools@4.0.2-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-jctools@4.0.2-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jctools@4.0.2-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-jctools@4.0.2-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-jctools@4.0.2-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jctools@4.0.2-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-jgroups@5.3.10-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-jgroups@5.3.10-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jgroups@5.3.10-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-jgroups@5.3.10-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-jgroups@5.3.10-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-jgroups@5.3.10-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-log4j@2.22.1-1.redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap8-log4j@2.22.1-1.redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-log4j@2.22.1-1.redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-log4j@2.22.1-1.redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap8-log4j@2.22.1-1.redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-log4j@2.22.1-1.redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-narayana@6.0.3-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-narayana@6.0.3-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-narayana@6.0.3-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-narayana@6.0.3-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-narayana@6.0.3-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-narayana@6.0.3-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-nimbus-jose-jwt@9.37.3-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-nimbus-jose-jwt@9.37.3-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-nimbus-jose-jwt@9.37.3-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-nimbus-jose-jwt@9.37.3-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-nimbus-jose-jwt@9.37.3-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-nimbus-jose-jwt@9.37.3-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-objectweb-asm@9.6.0-1.redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap8-objectweb-asm@9.6.0-1.redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-objectweb-asm@9.6.0-1.redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-objectweb-asm@9.6.0-1.redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap8-objectweb-asm@9.6.0-1.redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-objectweb-asm@9.6.0-1.redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-pem-keystore@2.3.0-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-pem-keystore@2.3.0-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-pem-keystore@2.3.0-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-pem-keystore@2.3.0-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-pem-keystore@2.3.0-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-pem-keystore@2.3.0-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-resteasy-extensions@2.0.1-3.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-resteasy-extensions@2.0.1-3.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-resteasy-extensions@2.0.1-3.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-resteasy-extensions@2.0.1-3.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-resteasy-extensions@2.0.1-3.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-resteasy-extensions@2.0.1-3.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-resteasy-spring@3.0.1-2.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-resteasy-spring@3.0.1-2.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-resteasy-spring@3.0.1-2.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-resteasy-spring@3.0.1-2.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-resteasy-spring@3.0.1-2.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-resteasy-spring@3.0.1-2.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-saaj-impl@3.0.4-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-saaj-impl@3.0.4-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-saaj-impl@3.0.4-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-saaj-impl@3.0.4-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-saaj-impl@3.0.4-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-saaj-impl@3.0.4-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-shibboleth-java-support@8.0.0-6.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-shibboleth-java-support@8.0.0-6.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-shibboleth-java-support@8.0.0-6.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-shibboleth-java-support@8.0.0-6.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-shibboleth-java-support@8.0.0-6.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-shibboleth-java-support@8.0.0-6.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-slf4j@2.0.16-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-slf4j@2.0.16-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-slf4j@2.0.16-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-slf4j@2.0.16-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-slf4j@2.0.16-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-slf4j@2.0.16-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-snakeyaml@2.2.0-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap8-snakeyaml@2.2.0-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-snakeyaml@2.2.0-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-snakeyaml@2.2.0-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap8-snakeyaml@2.2.0-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-snakeyaml@2.2.0-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap8-wildfly@8.0.4-2.GA_redhat_00005.1?arch=el9eap

purl pkg:rpm/redhat/eap8-wildfly@8.0.4-2.GA_redhat_00005.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-wildfly@8.0.4-2.GA_redhat_00005.1%3Farch=el9eap

url pkg:rpm/redhat/eap8-wildfly@8.0.4-2.GA_redhat_00005.1?arch=el8eap

purl pkg:rpm/redhat/eap8-wildfly@8.0.4-2.GA_redhat_00005.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-d6ku-ys87-cqh4

vulnerability	VCID-ftf5-r1db-9qfq

vulnerability	VCID-k3hu-vqn3-yuaj

vulnerability	VCID-rfs8-njaq-qkc8

vulnerability	VCID-w663-rgr4-ekdg

vulnerability	VCID-z76m-nbap-v7ab

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap8-wildfly@8.0.4-2.GA_redhat_00005.1%3Farch=el8eap

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-41172.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-41172.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-41172

reference_id

reference_type

scores

value	0.00889
scoring_system	epss
scoring_elements	0.75562
published_at	2026-04-18T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75556
published_at	2026-04-16T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75514
published_at	2026-04-13T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75461
published_at	2026-04-02T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75515
published_at	2026-04-08T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75473
published_at	2026-04-07T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75492
published_at	2026-04-04T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75523
published_at	2026-04-12T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75544
published_at	2026-04-11T12:55:00Z

value	0.00889
scoring_system	epss
scoring_elements	0.75524
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-41172

reference_url

https://github.com/apache/cxf

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/cxf

reference_url

https://lists.apache.org/thread/n2hvbrgwpdtcqdccod8by28ynnolybl6

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-07-23T17:58:41Z/

url

https://lists.apache.org/thread/n2hvbrgwpdtcqdccod8by28ynnolybl6

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-41172

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-41172

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2298829
reference_id	2298829
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2298829

reference_url

https://github.com/advisories/GHSA-4mgg-fqfq-64hg

reference_id

GHSA-4mgg-fqfq-64hg

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4mgg-fqfq-64hg

reference_url	https://access.redhat.com/errata/RHSA-2024:7052
reference_id	RHSA-2024:7052
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7052

Weaknesses

cwe_id	401
name	Missing Release of Memory after Effective Lifetime
description	The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 3.7 - 7.5

Exploitability 0.5

Weighted_severity 6.8

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k3hu-vqn3-yuaj

Vulnerability Instance