Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/33168?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/33168?format=api", "vulnerability_id": "VCID-u7kk-c6fm-judy", "summary": "RFD attack via Content-Disposition header sourced from request input by Spring MVC or Spring WebFlux Application\nIn Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a \"Content-Disposition\" header in the response where the filename attribute is derived from user supplied input.", "aliases": [ { "alias": "CVE-2020-5398" }, { "alias": "GHSA-8wx2-9q48-vm9r" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/928699?format=api", "purl": "pkg:deb/debian/libspring-java@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928694?format=api", "purl": "pkg:deb/debian/libspring-java@4.3.30-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928692?format=api", "purl": "pkg:deb/debian/libspring-java@4.3.30-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928696?format=api", "purl": "pkg:deb/debian/libspring-java@4.3.30-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/928695?format=api", "purl": "pkg:deb/debian/libspring-java@4.3.30-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libspring-java@4.3.30-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/198643?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.16.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.16.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198656?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/215110?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198660?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.2.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.2.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/72999?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.16.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.16.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/72998?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/215201?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/72997?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.2.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.2.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/72996?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.16.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.16.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/72995?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/215220?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/72994?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.2.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.2.3.RELEASE" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/142007?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/29136?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/173488?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/173489?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/173490?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/173491?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/173492?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/173493?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-mqnn-spsw-8fg5" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-tu1q-zbk1-hbdm" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/29140?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179101?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179102?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/32352?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198638?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198639?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198640?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198641?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198642?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.0.15.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.0.15.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568798?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/198644?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/32354?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198645?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198646?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198647?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198648?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198649?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198650?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198651?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198652?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198653?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198654?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198655?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568799?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.1.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.1.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/143846?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/198657?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.2.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.2.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198658?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.2.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.2.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198659?format=api", "purl": "pkg:maven/org.springframework/spring-web@5.2.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5ng1-3a32-cugs" }, { "vulnerability": "VCID-kpma-e8rd-b7c8" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-x5w8-j62d-m7h6" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-web@5.2.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568803?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/32302?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169282?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169283?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169284?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169285?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/27469?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179086?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179087?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179088?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179089?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/32313?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198684?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198685?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198686?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198687?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198688?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.0.15.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.0.15.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568804?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/142232?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/32315?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198689?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198690?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198691?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198692?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198693?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198694?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198695?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198696?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198697?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198698?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198699?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568805?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.1.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.1.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/142235?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/142231?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.2.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.2.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198682?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.2.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.2.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198683?format=api", "purl": "pkg:maven/org.springframework/spring-webflux@5.2.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cpsj-4k25-wufe" }, { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webflux@5.2.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568800?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/32393?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-fv26-nhx4-dqd3" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169278?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-fv26-nhx4-dqd3" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169279?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-fv26-nhx4-dqd3" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169280?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-fv26-nhx4-dqd3" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/169281?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-fv26-nhx4-dqd3" }, { "vulnerability": "VCID-pb7f-yasx-17ag" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/27464?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179275?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179276?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179277?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/179278?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-pht6-8af8-b3f2" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/32396?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198663?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198664?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198665?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.13.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.13.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198666?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.14.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.14.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198667?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.0.15.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.0.15.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/34072?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" }, { "vulnerability": "VCID-zdpx-scsg-uyfw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/142233?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" }, { "vulnerability": "VCID-zdpx-scsg-uyfw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/32397?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" }, { "vulnerability": "VCID-zdpx-scsg-uyfw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/34074?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.2.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198668?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.3.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.3.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198669?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.4.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.4.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198670?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.5.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198671?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.6.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.6.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198672?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.7.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.7.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198673?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.8.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.8.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198674?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.9.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.9.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198675?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.10.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.10.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198676?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.11.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.11.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198677?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.12.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.12.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/568801?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.1.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-u7kk-c6fm-judy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.1.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/48509?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/142234?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.2.0.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.2.0.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198661?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.2.1.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.2.1.RELEASE" }, { "url": "http://public2.vulnerablecode.io/api/packages/198662?format=api", "purl": "pkg:maven/org.springframework/spring-webmvc@5.2.2.RELEASE", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-cyjt-4vjn-mbc7" }, { "vulnerability": "VCID-dy4t-tm9m-rfex" }, { "vulnerability": "VCID-u7kk-c6fm-judy" }, { "vulnerability": "VCID-vac6-v6g7-a7e3" }, { "vulnerability": "VCID-y3uz-etva-sufh" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.springframework/spring-webmvc@5.2.2.RELEASE" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-5398.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-5398.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-5398", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.99593", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.99592", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.99591", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.9959", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.99589", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.99588", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.90184", "scoring_system": "epss", "scoring_elements": "0.99587", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-5398" }, { "reference_url": "https://github.com/spring-projects/spring-framework", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-framework" }, { "reference_url": "https://github.com/spring-projects/spring-framework/commit/41f40c6c229d3b4f768718f1ec229d8f0ad76d76", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/spring-projects/spring-framework/commit/41f40c6c229d3b4f768718f1ec229d8f0ad76d76" }, { "reference_url": "https://lists.apache.org/thread.html/r028977b9b9d44a89823639aa3296fb0f0cfdd76b4450df89d3c4fbbf@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r028977b9b9d44a89823639aa3296fb0f0cfdd76b4450df89d3c4fbbf@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0f2d0ae1bad2edb3d4a863d77f3097b5e88cfbdae7b809f4f42d6aad@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0f2d0ae1bad2edb3d4a863d77f3097b5e88cfbdae7b809f4f42d6aad@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0f3530f7cb510036e497532ffc4e0bd0b882940448cf4e233994b08b@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0f3530f7cb510036e497532ffc4e0bd0b882940448cf4e233994b08b@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1accbd4f31ad2f40e1661d70a4510a584eb3efd1e32e8660ccf46676@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r1accbd4f31ad2f40e1661d70a4510a584eb3efd1e32e8660ccf46676@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1bc5d673c01cfbb8e4a91914e9748ead3e5f56b61bca54d314c0419b@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r1bc5d673c01cfbb8e4a91914e9748ead3e5f56b61bca54d314c0419b@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1c679c43fa4f7846d748a937955c7921436d1b315445978254442163@%3Ccommits.ambari.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r1c679c43fa4f7846d748a937955c7921436d1b315445978254442163@%3Ccommits.ambari.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r1eccdbd7986618a7319ee7a533bd9d9bf6e8678e59dd4cca9b5b2d7a@%3Cissues.ambari.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r1eccdbd7986618a7319ee7a533bd9d9bf6e8678e59dd4cca9b5b2d7a@%3Cissues.ambari.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r27552d2fa10d96f2810c50d16ad1fd1899e37796c81a0c5e7585a02d@%3Cdev.rocketmq.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r27552d2fa10d96f2810c50d16ad1fd1899e37796c81a0c5e7585a02d@%3Cdev.rocketmq.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2dfd5b331b46d3f90c4dd63a060e9f04300468293874bd7e41af7163@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r2dfd5b331b46d3f90c4dd63a060e9f04300468293874bd7e41af7163@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r3765353ff434fd00d8fa5a44734b3625a06eeb2a3fb468da7dfae134@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r3765353ff434fd00d8fa5a44734b3625a06eeb2a3fb468da7dfae134@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4639e821ef9ca6ca10887988f410a60261400a7766560e7a97a22efc@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r4639e821ef9ca6ca10887988f410a60261400a7766560e7a97a22efc@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4b1886e82cc98ef38f582fef7d4ea722e3fcf46637cd4674926ba682@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r4b1886e82cc98ef38f582fef7d4ea722e3fcf46637cd4674926ba682@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5c95eff679dfc642e9e4ab5ac6d202248a59cb1e9457cfbe8b729ac5@%3Cissues.ambari.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r5c95eff679dfc642e9e4ab5ac6d202248a59cb1e9457cfbe8b729ac5@%3Cissues.ambari.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r645408661a8df9158f49e337072df39838fa76da629a7e25a20928a6@%3Cdev.rocketmq.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r645408661a8df9158f49e337072df39838fa76da629a7e25a20928a6@%3Cdev.rocketmq.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r6dac0e365d1b2df9a7ffca12b4195181ec14ff0abdf59e1fdb088ce5@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r6dac0e365d1b2df9a7ffca12b4195181ec14ff0abdf59e1fdb088ce5@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r712a6fce928e24e7b6ec30994a7e115a70f1f6e4cf2c2fbf0347ce46@%3Ccommits.servicecomb.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r712a6fce928e24e7b6ec30994a7e115a70f1f6e4cf2c2fbf0347ce46@%3Ccommits.servicecomb.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r7361bfe84bde9d233f9800c3a96673e7bd81207549ced0236f07a29d@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r7361bfe84bde9d233f9800c3a96673e7bd81207549ced0236f07a29d@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r74f81f93a9b69140fe41e236afa7cbe8dfa75692e7ab31a468fddaa0@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r74f81f93a9b69140fe41e236afa7cbe8dfa75692e7ab31a468fddaa0@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r7d5e518088e2e778928b02bcd3be3b948b59acefe2f0ebb57ec2ebb0@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r7d5e518088e2e778928b02bcd3be3b948b59acefe2f0ebb57ec2ebb0@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8736185eb921022225a83e56d7285a217fd83f5524bd64a6ca3bf5cc@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r8736185eb921022225a83e56d7285a217fd83f5524bd64a6ca3bf5cc@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r881fb5a95ab251106fed38f836257276feb026bfe01290e72ff91c2a@%3Ccommits.servicecomb.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r881fb5a95ab251106fed38f836257276feb026bfe01290e72ff91c2a@%3Ccommits.servicecomb.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8b496b1743d128e6861ee0ed3c3c48cc56c505b38f84fa5baf7ae33a@%3Cdev.ambari.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r8b496b1743d128e6861ee0ed3c3c48cc56c505b38f84fa5baf7ae33a@%3Cdev.ambari.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8cc37a60a5056351377ee5f1258f2a4fdd39822a257838ba6bcc1e88@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r8cc37a60a5056351377ee5f1258f2a4fdd39822a257838ba6bcc1e88@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9f13cccb214495e14648d2c9b8f2c6072fd5219e74502dd35ede81e1@%3Cdev.ambari.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r9f13cccb214495e14648d2c9b8f2c6072fd5219e74502dd35ede81e1@%3Cdev.ambari.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9fb1ee08cf337d16c3364feb0f35a072438c1a956afd7b77859aa090@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r9fb1ee08cf337d16c3364feb0f35a072438c1a956afd7b77859aa090@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/ra996b56e1f5ab2fed235a8b91fa0cc3cf34c2e9fee290b7fa4380a0d@%3Ccommits.servicecomb.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/ra996b56e1f5ab2fed235a8b91fa0cc3cf34c2e9fee290b7fa4380a0d@%3Ccommits.servicecomb.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rab0de39839b4c208dcd73f01e12899dc453361935a816a784548e048@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rab0de39839b4c208dcd73f01e12899dc453361935a816a784548e048@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rb4d1fc078f086ec2e98b2693e8b358e58a6a4ef903ceed93a1ee2b18@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rb4d1fc078f086ec2e98b2693e8b358e58a6a4ef903ceed93a1ee2b18@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rc05acaacad089613e9642f939b3a44f7199b5537493945c3e045287f@%3Cdev.geode.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rc05acaacad089613e9642f939b3a44f7199b5537493945c3e045287f@%3Cdev.geode.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rc9c7f96f08c8554225dba9050ea5e64bebc129d0d836303143fe3160@%3Cdev.rocketmq.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rc9c7f96f08c8554225dba9050ea5e64bebc129d0d836303143fe3160@%3Cdev.rocketmq.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rdcaadaa9a68b31b7d093d76eacfaacf6c7a819f976b595c75ad2d4dc@%3Cdev.geode.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rdcaadaa9a68b31b7d093d76eacfaacf6c7a819f976b595c75ad2d4dc@%3Cdev.geode.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rded5291e25a4c4085a6d43cf262e479140198bf4eabb84986e0a1ef3@%3Cdev.rocketmq.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rded5291e25a4c4085a6d43cf262e479140198bf4eabb84986e0a1ef3@%3Cdev.rocketmq.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/reaa8a6674baf2724b1b88a621b0d72d9f7a6f5577c88759842c16eb6@%3Ccommits.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/reaa8a6674baf2724b1b88a621b0d72d9f7a6f5577c88759842c16eb6@%3Ccommits.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf8dc72b974ee74f17bce661ea7d124e733a1f4c4f236354ac0cf48e8@%3Ccommits.camel.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rf8dc72b974ee74f17bce661ea7d124e733a1f4c4f236354ac0cf48e8@%3Ccommits.camel.apache.org%3E" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5398", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5398" }, { "reference_url": "https://pivotal.io/security/cve-2020-5398", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://pivotal.io/security/cve-2020-5398" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210917-0006", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20210917-0006" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuApr2021.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuApr2021.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://www.oracle.com//security-alerts/cpujul2021.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com//security-alerts/cpujul2021.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2022.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujul2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2021.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2021.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1799475", "reference_id": "1799475", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1799475" }, { "reference_url": "https://github.com/advisories/GHSA-8wx2-9q48-vm9r", "reference_id": "GHSA-8wx2-9q48-vm9r", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-8wx2-9q48-vm9r" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5568", "reference_id": "RHSA-2020:5568", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5568" } ], "weaknesses": [ { "cwe_id": 494, "name": "Download of Code Without Integrity Check", "description": "The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code." }, { "cwe_id": 79, "name": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "description": "The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "2.0", "weighted_severity": "8.0", "risk_score": 10.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u7kk-c6fm-judy" }