Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-gkqy-w15q-jud2

Summary

HAL Console has a Cross Site Scripting (XSS) vulnerability of user input
A flaw was found in the HAL Console in the Wildfly component, which does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output used as a web page that is served to other users. The attacker must be authenticated as a user that belongs to management groups “SuperUser”, “Admin”, or “Maintainer”.

### Impact
Cross-site scripting (XSS) vulnerability in the management console.

### Patches
Fixed in [HAL 3.7.7.Final](https://github.com/hal/console/releases/tag/v3.7.7) 

### Workarounds
No workaround available

### References
- https://access.redhat.com/security/cve/CVE-2025-23366
- https://bugzilla.redhat.com/show_bug.cgi?id=2337619

Aliases

alias	CVE-2025-23366

alias	GHSA-jhvj-f397-8w6q

Fixed_packages

url pkg:maven/org.jboss.hal/hal-console@3.7.7.Final

purl pkg:maven/org.jboss.hal/hal-console@3.7.7.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.7.7.Final

Affected_packages

url pkg:maven/org.jboss.hal/hal-console@3.5.0.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.0.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.0.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.1.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.1.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.1.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.2.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.2.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.2.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.3.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.3.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.3.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.4.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.4.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.4.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.5.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.5.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.5.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.6.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.6.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.6.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.7.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.7.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.7.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.8.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.8.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.8.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.9.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.9.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.9.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.10.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.10.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.10.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.11.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.11.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.11.Final

url pkg:maven/org.jboss.hal/hal-console@3.5.12.Final

purl pkg:maven/org.jboss.hal/hal-console@3.5.12.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.5.12.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.0.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.0.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.0.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.1.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.1.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.1.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.2.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.2.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.2.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.3.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.3.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.3.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.4.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.4.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.4.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.5.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.5.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.5.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.6.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.6.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.6.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.7.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.7.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.7.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.8.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.8.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.8.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.9.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.9.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.9.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.10.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.10.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.10.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.11.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.11.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.11.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.12.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.12.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.12.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.13.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.13.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.13.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.14.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.14.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.14.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.15.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.15.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.15.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.16.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.16.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.16.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.17.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.17.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.17.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.18.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.18.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.18.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.19.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.19.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.19.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.20.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.20.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.20.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.21.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.21.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.21.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.22.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.22.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.22.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.23.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.23.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.23.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.24.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.24.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.24.Final

url pkg:maven/org.jboss.hal/hal-console@3.6.27.Final

purl pkg:maven/org.jboss.hal/hal-console@3.6.27.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.6.27.Final

url pkg:maven/org.jboss.hal/hal-console@3.7.0.Final

purl pkg:maven/org.jboss.hal/hal-console@3.7.0.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.7.0.Final

url pkg:maven/org.jboss.hal/hal-console@3.7.4.Final

purl pkg:maven/org.jboss.hal/hal-console@3.7.4.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.7.4.Final

url pkg:maven/org.jboss.hal/hal-console@3.7.5.Final

purl pkg:maven/org.jboss.hal/hal-console@3.7.5.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.7.5.Final

url pkg:maven/org.jboss.hal/hal-console@3.7.6.Final

purl pkg:maven/org.jboss.hal/hal-console@3.7.6.Final

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5du4-1bus-huhv

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-w155-te58-v3fy

vulnerability	VCID-zufu-x8dx-xygs

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.hal/hal-console@3.7.6.Final

url pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1?arch=el8eap

purl pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1?arch=el9eap

purl pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1?arch=el7eap

purl pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@2.16.0-21.redhat_00055.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.5.10-1.redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1?arch=el7eap

purl pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1?arch=el8eap

purl pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1?arch=el9eap

purl pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-artemis-native@1:1.0.2-5.redhat_00004.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-elytron-web@1.9.6-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-glassfish-jsf@2.3.14-9.SP10_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hal-console@3.3.27-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hibernate-validator@6.0.23-3.SP2_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-ironjacamar@1.5.21-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1?arch=el9eap

purl pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1?arch=el8eap

purl pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.10.0-42.Final_redhat_00042.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jbossws-cxf@5.4.15-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1?arch=el7eap

purl pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.4.23-3.GA_redhat_00002.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1j1w-c84m-b3h3

vulnerability	VCID-7bzk-k461-g3dd

vulnerability	VCID-8ew2-s4a9-u7cu

vulnerability	VCID-gkqy-w15q-jud2

vulnerability	VCID-gvv3-4r9v-7kau

vulnerability	VCID-pnjk-4kxe-kufc

vulnerability	VCID-ytk3-rjrf-wfh9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.15.26-1.Final_redhat_00001.1%3Farch=el9eap

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23366.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-23366.json

reference_url

https://access.redhat.com/security/cve/CVE-2025-23366

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-15T15:00:47Z/

url

https://access.redhat.com/security/cve/CVE-2025-23366

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-23366

reference_id

reference_type

scores

value	0.00242
scoring_system	epss
scoring_elements	0.47515
published_at	2026-04-18T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47437
published_at	2026-04-02T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47457
published_at	2026-04-04T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47407
published_at	2026-04-07T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47461
published_at	2026-04-08T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47458
published_at	2026-04-09T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47481
published_at	2026-04-11T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47456
published_at	2026-04-12T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47463
published_at	2026-04-13T12:55:00Z

value	0.00242
scoring_system	epss
scoring_elements	0.47522
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-23366

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2337619

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-01-15T15:00:47Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2337619

reference_url

https://github.com/hal/console

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/hal/console

reference_url

https://github.com/hal/console/releases/tag/v3.7.7

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/hal/console/releases/tag/v3.7.7

reference_url

https://github.com/hal/console/security/advisories/GHSA-jhvj-f397-8w6q

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/hal/console/security/advisories/GHSA-jhvj-f397-8w6q

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_data_grid:7
reference_id	cpe:/a:redhat:jboss_data_grid:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_data_grid:7

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jbosseapxp
reference_id	cpe:/a:redhat:jbosseapxp
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jbosseapxp

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7
reference_id	cpe:/a:redhat:jboss_enterprise_application_platform:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:7

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:8
reference_id	cpe:/a:redhat:jboss_enterprise_application_platform:8
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:jboss_enterprise_application_platform:8

reference_url

https://github.com/advisories/GHSA-jhvj-f397-8w6q

reference_id

GHSA-jhvj-f397-8w6q

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jhvj-f397-8w6q

Weaknesses

cwe_id	79
name	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description	The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gkqy-w15q-jud2

Vulnerability Instance