Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/41479?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/41479?format=api", "vulnerability_id": "VCID-j3w4-fpgm-bqf9", "summary": "Exposure of Sensitive Information to an Unauthorized Actor\nAll versions of Apache Santuario - XML Security for Java is vulnerable to an issue where the \"secureValidation\" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an attacker to abuse an XPath Transform to extract any local .xml files in a RetrievalMethod element.", "aliases": [ { "alias": "CVE-2021-40690" }, { "alias": "GHSA-j8wc-gxx9-82hx" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/104552?format=api", "purl": "pkg:deb/debian/libxml-security-java@2.0.10-2%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6k43-cu35-gfaz" }, { "vulnerability": "VCID-ewhr-zrdn-qye8" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml-security-java@2.0.10-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104560?format=api", "purl": "pkg:deb/debian/libxml-security-java@2.1.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml-security-java@2.1.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104550?format=api", "purl": "pkg:deb/debian/libxml-security-java@2.1.7-3%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml-security-java@2.1.7-3%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104554?format=api", "purl": "pkg:deb/debian/libxml-security-java@2.1.8-1.1~deb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml-security-java@2.1.8-1.1~deb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/104553?format=api", "purl": "pkg:deb/debian/libxml-security-java@2.1.8-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxml-security-java@2.1.8-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/59028?format=api", "purl": "pkg:maven/org.apache.cxf/cxf@3.4.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf@3.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/59033?format=api", "purl": "pkg:maven/org.apache.santuario/xmlsec@2.1.7", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.santuario/xmlsec@2.1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/59034?format=api", "purl": "pkg:maven/org.apache.santuario/xmlsec@2.2.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.santuario/xmlsec@2.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/59031?format=api", "purl": "pkg:maven/org.apache.tomee/openejb-lite@8.0.8", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomee/openejb-lite@8.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59029?format=api", "purl": "pkg:maven/org.apache.tomee/tomee@8.0.8", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomee/tomee@8.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/59026?format=api", "purl": "pkg:maven/org.apache.tomee/tomee-webapp@8.0.8", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomee/tomee-webapp@8.0.8" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/59027?format=api", "purl": "pkg:maven/org.apache.cxf/cxf@3.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-j3w4-fpgm-bqf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf@3.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/59032?format=api", "purl": "pkg:maven/org.apache.santuario/xmlsec@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-j3w4-fpgm-bqf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.santuario/xmlsec@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/112228?format=api", "purl": "pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/136002?format=api", "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.3.12-1.redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.3.12-1.redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136015?format=api", "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.3.12-1.redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.3.12-1.redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136023?format=api", "purl": "pkg:rpm/redhat/eap7-apache-cxf@3.3.12-1.redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.3.12-1.redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112218?format=api", "purl": "pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135987?format=api", "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.3-1.Final_redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-ironjacamar@1.5.3-1.Final_redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136011?format=api", "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.3-1.Final_redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-ironjacamar@1.5.3-1.Final_redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136018?format=api", "purl": "pkg:rpm/redhat/eap7-ironjacamar@1.5.3-1.Final_redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-ironjacamar@1.5.3-1.Final_redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135998?format=api", "purl": "pkg:rpm/redhat/eap7-jakarta-el@3.0.3-3.redhat_00007.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jakarta-el@3.0.3-3.redhat_00007.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136009?format=api", "purl": "pkg:rpm/redhat/eap7-jakarta-el@3.0.3-3.redhat_00007.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jakarta-el@3.0.3-3.redhat_00007.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136019?format=api", "purl": "pkg:rpm/redhat/eap7-jakarta-el@3.0.3-3.redhat_00007.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jakarta-el@3.0.3-3.redhat_00007.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135986?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-ejb-client@4.0.43-1.Final_redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-ejb-client@4.0.43-1.Final_redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136000?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-ejb-client@4.0.43-1.Final_redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-ejb-client@4.0.43-1.Final_redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136012?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-ejb-client@4.0.43-1.Final_redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-ejb-client@4.0.43-1.Final_redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135976?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-10.Final_redhat_00011.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-10.Final_redhat_00011.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135992?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-10.Final_redhat_00011.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-10.Final_redhat_00011.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136006?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-10.Final_redhat_00011.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-10.Final_redhat_00011.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112225?format=api", "purl": "pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135989?format=api", "purl": "pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136004?format=api", "purl": "pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136022?format=api", "purl": "pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112238?format=api", "purl": "pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135980?format=api", "purl": "pkg:rpm/redhat/eap7-resteasy@3.11.5-1.Final_redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-resteasy@3.11.5-1.Final_redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136005?format=api", "purl": "pkg:rpm/redhat/eap7-resteasy@3.11.5-1.Final_redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-resteasy@3.11.5-1.Final_redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136017?format=api", "purl": "pkg:rpm/redhat/eap7-resteasy@3.11.5-1.Final_redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-resteasy@3.11.5-1.Final_redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112239?format=api", "purl": "pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135977?format=api", "purl": "pkg:rpm/redhat/eap7-undertow@2.0.41-1.SP1_redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.0.41-1.SP1_redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135994?format=api", "purl": "pkg:rpm/redhat/eap7-undertow@2.0.41-1.SP1_redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.0.41-1.SP1_redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136008?format=api", "purl": "pkg:rpm/redhat/eap7-undertow@2.0.41-1.SP1_redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@2.0.41-1.SP1_redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112240?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135990?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.10-2.GA_redhat_00003.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.3.10-2.GA_redhat_00003.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136014?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.10-2.GA_redhat_00003.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.3.10-2.GA_redhat_00003.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136021?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly@7.3.10-2.GA_redhat_00003.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.3.10-2.GA_redhat_00003.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135979?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.15-1.Final_redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.10.15-1.Final_redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135993?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.15-1.Final_redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.10.15-1.Final_redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136013?format=api", "purl": "pkg:rpm/redhat/eap7-wildfly-elytron@1.10.15-1.Final_redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-elytron@1.10.15-1.Final_redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112226?format=api", "purl": "pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135991?format=api", "purl": "pkg:rpm/redhat/eap7-wss4j@2.2.7-1.redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wss4j@2.2.7-1.redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136007?format=api", "purl": "pkg:rpm/redhat/eap7-wss4j@2.2.7-1.redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wss4j@2.2.7-1.redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136016?format=api", "purl": "pkg:rpm/redhat/eap7-wss4j@2.2.7-1.redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wss4j@2.2.7-1.redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/112241?format=api", "purl": "pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-52hy-69kb-byee" }, { "vulnerability": "VCID-5cgf-6rth-nyfg" }, { "vulnerability": "VCID-5r6b-8ze2-ruhw" }, { "vulnerability": "VCID-6wpa-h8xy-kfh2" }, { "vulnerability": "VCID-apmf-stq4-8udt" }, { "vulnerability": "VCID-ast2-qxn7-m3ar" }, { "vulnerability": "VCID-c4ms-cx82-n7bm" }, { "vulnerability": "VCID-cf4e-n3d4-x7fq" }, { "vulnerability": "VCID-ewgw-1sk9-dqhe" }, { "vulnerability": "VCID-gpvy-v7xt-ekc8" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-swy1-8ztq-5qgn" }, { "vulnerability": "VCID-tqvr-tetp-8ugb" }, { "vulnerability": "VCID-vb58-6kfn-7uaj" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" }, { "vulnerability": "VCID-wz1m-11gx-cfd2" }, { "vulnerability": "VCID-y7gj-gcwm-8fde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/135984?format=api", "purl": "pkg:rpm/redhat/eap7-xml-security@2.1.7-1.redhat_00001.1?arch=el8eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-xml-security@2.1.7-1.redhat_00001.1%3Farch=el8eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135996?format=api", "purl": "pkg:rpm/redhat/eap7-xml-security@2.1.7-1.redhat_00001.1?arch=el7eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-xml-security@2.1.7-1.redhat_00001.1%3Farch=el7eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/136010?format=api", "purl": "pkg:rpm/redhat/eap7-xml-security@2.1.7-1.redhat_00001.1?arch=el6eap", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-8yyk-tgws-kuge" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-dm2g-eaak-cya7" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-mv9x-xp2f-cycv" }, { "vulnerability": "VCID-wvzn-b6g3-37gr" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-xml-security@2.1.7-1.redhat_00001.1%3Farch=el6eap" }, { "url": "http://public2.vulnerablecode.io/api/packages/135153?format=api", "purl": "pkg:rpm/redhat/rh-sso7-keycloak@15.0.4-1.redhat_00001.1?arch=el7sso", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1a4q-f36b-43aq" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-yn28-fcm1-zfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@15.0.4-1.redhat_00001.1%3Farch=el7sso" }, { "url": "http://public2.vulnerablecode.io/api/packages/135154?format=api", "purl": "pkg:rpm/redhat/rh-sso7-keycloak@15.0.4-1.redhat_00001.1?arch=el8sso", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1a4q-f36b-43aq" }, { "vulnerability": "VCID-df6d-zkkc-nug5" }, { "vulnerability": "VCID-j3w4-fpgm-bqf9" }, { "vulnerability": "VCID-yn28-fcm1-zfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@15.0.4-1.redhat_00001.1%3Farch=el8sso" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-40690.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-40690.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-40690", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00278", "scoring_system": "epss", "scoring_elements": "0.51487", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-40690" }, { "reference_url": "https://issues.apache.org/jira/browse/CXF-8613", "reference_id": "", "reference_type": "", "scores": [], "url": "https://issues.apache.org/jira/browse/CXF-8613" }, { "reference_url": "https://lists.apache.org/thread.html/r3b3f5ba9b0de8c9c125077b71af06026d344a709a8ba67db81ee9faa@%3Ccommits.tomee.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r3b3f5ba9b0de8c9c125077b71af06026d344a709a8ba67db81ee9faa@%3Ccommits.tomee.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r401ecb7274794f040cd757b259ebe3e8c463ae74f7961209ccad3c59@%3Cissues.cxf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r401ecb7274794f040cd757b259ebe3e8c463ae74f7961209ccad3c59@%3Cissues.cxf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8848751b6a5dd78cc9e99d627e74fecfaffdfa1bb615dce827aad633%40%3Cdev.santuario.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r8848751b6a5dd78cc9e99d627e74fecfaffdfa1bb615dce827aad633%40%3Cdev.santuario.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r8a5c0ce9014bd07303aec1e5eed55951704878016465d3dae00e0c28@%3Ccommits.tomee.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r8a5c0ce9014bd07303aec1e5eed55951704878016465d3dae00e0c28@%3Ccommits.tomee.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9c100d53c84d54cf71975e3f0cfcc2856a8846554a04c99390156ce4@%3Ccommits.tomee.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r9c100d53c84d54cf71975e3f0cfcc2856a8846554a04c99390156ce4@%3Ccommits.tomee.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/raf352f95c19c0c4051af3180752cb69acbea88d0d066ab176c6170e8@%3Cuser.poi.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/raf352f95c19c0c4051af3180752cb69acbea88d0d066ab176c6170e8@%3Cuser.poi.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rbbbac0759b12472abd0c278d32b5e0867bb21934df8e14e5e641597c@%3Ccommits.tomee.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rbbbac0759b12472abd0c278d32b5e0867bb21934df8e14e5e641597c@%3Ccommits.tomee.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rbdac116aef912b563da54f4c152222c0754e32fb2f785519ac5e059f@%3Ccommits.tomee.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rbdac116aef912b563da54f4c152222c0754e32fb2f785519ac5e059f@%3Ccommits.tomee.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re294cfc61f509512874ea514d8d64fd276253d54ac378ffa7a4880c8@%3Ccommits.tomee.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/re294cfc61f509512874ea514d8d64fd276253d54ac378ffa7a4880c8@%3Ccommits.tomee.apache.org%3E" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00015.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00015.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230818-0002", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20230818-0002" }, { "reference_url": "https://www.debian.org/security/2021/dsa-5010", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.debian.org/security/2021/dsa-5010" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2022.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2022.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujul2022.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2011190", "reference_id": "2011190", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2011190" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=994569", "reference_id": "994569", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=994569" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-40690", "reference_id": "CVE-2021-40690", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-40690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4679", "reference_id": "RHSA-2021:4679", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4679" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5149", "reference_id": "RHSA-2021:5149", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5149" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5150", "reference_id": "RHSA-2021:5150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5151", "reference_id": "RHSA-2021:5151", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5151" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5154", "reference_id": "RHSA-2021:5154", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5154" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5170", "reference_id": "RHSA-2021:5170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0146", "reference_id": "RHSA-2022:0146", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0146" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0151", "reference_id": "RHSA-2022:0151", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0151" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0152", "reference_id": "RHSA-2022:0152", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0152" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0155", "reference_id": "RHSA-2022:0155", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0155" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0164", "reference_id": "RHSA-2022:0164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0501", "reference_id": "RHSA-2022:0501", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1013", "reference_id": "RHSA-2022:1013", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1013" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5532", "reference_id": "RHSA-2022:5532", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5532" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:6407", "reference_id": "RHSA-2022:6407", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:6407" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j3w4-fpgm-bqf9" }