Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/44862?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/44862?format=api", "vulnerability_id": "VCID-m3g5-ua28-afd2", "summary": "Origin Validation Error in Apache Maven\nApache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository. Maven is changing the default behavior in 3.8.1+ to no longer follow http (non-SSL) repository references by default. More details available in the referenced urls. If you are currently using a repository manager to govern the repositories used by your builds, you are unaffected by the risks present in the legacy behavior, and are unaffected by this vulnerability and change to default behavior. See this link for more information about repository management: https://maven.apache.org/repository-management.html", "aliases": [ { "alias": "CVE-2021-26291" }, { "alias": "GHSA-2f88-5hg8-9x2x" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/373820?format=api", "purl": "pkg:alpm/archlinux/maven@3.8.1-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/maven@3.8.1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/930529?format=api", "purl": "pkg:deb/debian/maven@3.8.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.8.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930528?format=api", "purl": "pkg:deb/debian/maven@3.8.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.8.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1056302?format=api", "purl": "pkg:deb/debian/maven@3.8.7-1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.8.7-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/930531?format=api", "purl": "pkg:deb/debian/maven@3.9.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.9.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930530?format=api", "purl": "pkg:deb/debian/maven@3.9.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.9.12-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/244173?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.8.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/76474?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.8.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/76486?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.8.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.8.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/373819?format=api", "purl": "pkg:alpm/archlinux/maven@3.6.3-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" }, { "vulnerability": "VCID-mrdq-9pb2-3qb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/maven@3.6.3-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/930527?format=api", "purl": "pkg:deb/debian/maven@3.6.3-5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.6.3-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1056301?format=api", "purl": "pkg:deb/debian/maven@3.6.3-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/maven@3.6.3-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/569536?format=api", "purl": "pkg:maven/org.apache.kafka/kafka@2.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.kafka/kafka@2.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/569537?format=api", "purl": "pkg:maven/org.apache.kafka/kafka@2.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.kafka/kafka@2.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/39531?format=api", "purl": "pkg:maven/org.apache.kafka/kafka@2.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3jvm-ph93-bfch" }, { "vulnerability": "VCID-fcsz-ec5x-3kgc" }, { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.kafka/kafka@2.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/569516?format=api", "purl": "pkg:maven/org.apache.kafka/kafka_2.10@2.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.kafka/kafka_2.10@2.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/569517?format=api", "purl": "pkg:maven/org.apache.kafka/kafka_2.10@2.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.kafka/kafka_2.10@2.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/569518?format=api", "purl": "pkg:maven/org.apache.kafka/kafka_2.10@2.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fcsz-ec5x-3kgc" }, { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.kafka/kafka_2.10@2.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244115?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244116?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0-alpha-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0-alpha-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244117?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0-alpha-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0-alpha-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244118?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244119?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0-beta-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0-beta-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244120?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0-beta-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0-beta-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244121?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244122?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244123?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244124?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244125?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/244126?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/244127?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/244128?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/244129?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/244130?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/244131?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/244132?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/244133?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.1.0-M1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.1.0-M1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244134?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244135?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244136?format=api", "purl": "pkg:maven/org.apache.maven/maven@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244137?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244138?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244139?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244140?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/244141?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/244142?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/244143?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-alpha-7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-alpha-7" }, { "url": "http://public2.vulnerablecode.io/api/packages/244144?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244145?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-beta-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-beta-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244146?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0-beta-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0-beta-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244147?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244148?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244149?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244150?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244151?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/244152?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/244153?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.1.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.1.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244154?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244155?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244156?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244157?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244158?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244159?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/244160?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244161?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244162?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/244163?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.5.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.5.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244164?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.5.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.5.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244165?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244166?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244167?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/244168?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/244169?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/244170?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/244171?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/244172?format=api", "purl": "pkg:maven/org.apache.maven/maven@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven@3.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252737?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252738?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252739?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252740?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252741?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252742?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252743?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252744?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/252745?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-alpha-7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-alpha-7" }, { "url": "http://public2.vulnerablecode.io/api/packages/252746?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252747?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-beta-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-beta-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252748?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0-beta-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0-beta-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252749?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252750?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252751?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252752?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252753?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252754?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252755?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.1.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.1.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252756?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252757?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252758?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252759?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252760?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252761?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252762?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252763?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252764?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/252765?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.5.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.5.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252766?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.5.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.5.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252767?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252768?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252769?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252770?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252771?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252772?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252773?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252774?format=api", "purl": "pkg:maven/org.apache.maven/maven-compat@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-compat@3.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252809?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252810?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0-alpha-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0-alpha-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252811?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0-alpha-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0-alpha-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252812?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252813?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0-beta-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0-beta-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252814?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0-beta-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0-beta-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252815?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252816?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252817?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252818?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252819?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252820?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252821?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/252822?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/252823?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/252824?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/252825?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/252826?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.0.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.0.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/252827?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.1.0-M1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.1.0-M1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252828?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252829?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252830?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252831?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252832?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252833?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252834?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252835?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252836?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/252837?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-alpha-7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-alpha-7" }, { "url": "http://public2.vulnerablecode.io/api/packages/252838?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252839?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-beta-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-beta-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252840?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0-beta-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0-beta-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252841?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252842?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252843?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252844?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252845?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252846?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252847?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.1.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.1.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252848?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252849?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252850?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252851?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252852?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252853?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252854?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252855?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.3.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.3.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252856?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.3.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.3.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/252857?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.5.0-alpha-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.5.0-alpha-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252858?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.5.0-beta-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.5.0-beta-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252859?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252860?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252861?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252862?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252863?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252864?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252865?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252866?format=api", "purl": "pkg:maven/org.apache.maven/maven-core@3.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m3g5-ua28-afd2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.maven/maven-core@3.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/97035?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1tha-u7dt-tfc9" }, { "vulnerability": "VCID-2zhb-qfhq-xkdp" }, { "vulnerability": "VCID-4qvq-xv22-xbed" }, { "vulnerability": "VCID-5bu5-5b6n-nuft" }, { "vulnerability": "VCID-73th-g3mx-dqf1" }, { "vulnerability": "VCID-atqg-nfz6-zyfs" }, { "vulnerability": "VCID-dmkc-42vj-gbhc" }, { "vulnerability": "VCID-j584-bgww-z7fw" }, { "vulnerability": "VCID-j986-mtma-b3bw" }, { "vulnerability": "VCID-m3g5-ua28-afd2" }, { "vulnerability": "VCID-mm3e-4pej-byed" }, { "vulnerability": "VCID-n5vc-ggjg-kfc1" }, { "vulnerability": "VCID-netd-rr9e-wbg5" }, { "vulnerability": "VCID-pnge-tumu-v7e2" }, { "vulnerability": "VCID-quvj-3tpk-qug1" }, { "vulnerability": "VCID-rxtr-936k-h3cc" }, { "vulnerability": "VCID-s839-rpta-6bej" }, { "vulnerability": "VCID-tx8n-nmhx-gqg1" }, { "vulnerability": "VCID-xq5k-dyk9-u3ct" }, { "vulnerability": "VCID-zxcj-h6nx-m7gq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/95624?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.12.1706515741-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-17sn-57uv-gkg3" }, { "vulnerability": "VCID-2a3h-6wad-63gc" }, { "vulnerability": "VCID-5bu5-5b6n-nuft" }, { "vulnerability": "VCID-a1eu-yahc-ffgr" }, { "vulnerability": "VCID-fnpa-1sqy-u7hw" }, { "vulnerability": "VCID-h9yg-u3jh-mbfq" }, { "vulnerability": "VCID-j456-xdn6-xyej" }, { "vulnerability": "VCID-j584-bgww-z7fw" }, { "vulnerability": "VCID-j986-mtma-b3bw" }, { "vulnerability": "VCID-m3g5-ua28-afd2" }, { "vulnerability": "VCID-mm3e-4pej-byed" }, { "vulnerability": "VCID-pwtj-az3g-zka3" }, { "vulnerability": "VCID-quvj-3tpk-qug1" }, { "vulnerability": "VCID-zxcj-h6nx-m7gq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.12.1706515741-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/95804?format=api", "purl": "pkg:rpm/redhat/jenkins-2-plugins@4.13.1706516346-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5bu5-5b6n-nuft" }, { "vulnerability": "VCID-955x-hg4a-5kc3" }, { "vulnerability": "VCID-j584-bgww-z7fw" }, { "vulnerability": "VCID-j986-mtma-b3bw" }, { "vulnerability": "VCID-m3g5-ua28-afd2" }, { "vulnerability": "VCID-mm3e-4pej-byed" }, { "vulnerability": "VCID-quvj-3tpk-qug1" }, { "vulnerability": "VCID-zxcj-h6nx-m7gq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.13.1706516346-1%3Farch=el8" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26291.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26291.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26291", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97648", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97649", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97646", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97639", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97617", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97623", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97626", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97625", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97638", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97635", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97633", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.46101", "scoring_system": "epss", "scoring_elements": "0.97631", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-26291" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26291", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26291" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/apache/maven", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/maven" }, { "reference_url": "https://github.com/apache/maven/commit/899465aeec03753ea91e15a79579eab76369c016", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/maven/commit/899465aeec03753ea91e15a79579eab76369c016" }, { "reference_url": "https://github.com/apache/maven/commit/fa79cb22e456cc65522b5bab8c4240fe08c5775f", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/apache/maven/commit/fa79cb22e456cc65522b5bab8c4240fe08c5775f" }, { "reference_url": "https://issues.apache.org/jira/browse/MNG-7116", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://issues.apache.org/jira/browse/MNG-7116" }, { "reference_url": "https://issues.apache.org/jira/browse/MNG-7117", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://issues.apache.org/jira/browse/MNG-7117" }, { "reference_url": "https://lists.apache.org/thread.html/r0556ce5db7231025785477739ee416b169d8aff5ee9bac7854d64736@%3Cannounce.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0556ce5db7231025785477739ee416b169d8aff5ee9bac7854d64736@%3Cannounce.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r06db4057b74e0598a412734f693a34a8836ac6f06d16d139e5e1027c@%3Cdev.maven.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r06db4057b74e0598a412734f693a34a8836ac6f06d16d139e5e1027c@%3Cdev.maven.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r07a89b32783f73bda6903c1f9aadeb859e5bef0a4daed6d87db8e4a9@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r07a89b32783f73bda6903c1f9aadeb859e5bef0a4daed6d87db8e4a9@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r08a401f8c98a99f68d061fde6e6659d695f28d60fe4f0413bcb355b0@%3Ccommits.druid.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r08a401f8c98a99f68d061fde6e6659d695f28d60fe4f0413bcb355b0@%3Ccommits.druid.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0a5e4ff2a7ca7ad8595d7683afbaeb3b8788ba974681907f97e7dc8e@%3Cjira.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0a5e4ff2a7ca7ad8595d7683afbaeb3b8788ba974681907f97e7dc8e@%3Cjira.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r0d083314aa3934dd4b6e6970d1f6ee50f6eaa9d867deb2cd96788478@%3Cjira.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r0d083314aa3934dd4b6e6970d1f6ee50f6eaa9d867deb2cd96788478@%3Cjira.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r167dbc42ef7c59802c2ca1ac14735ef9cf687c25208229993d6206fe@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r167dbc42ef7c59802c2ca1ac14735ef9cf687c25208229993d6206fe@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe@%3Cusers.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r2721aba31a8562639c4b937150897e24f78f747cdbda8641c0f659fe@%3Cusers.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r2ddabd06d94b60cfb0141e4abb23201c628ab925e30742f61a04d013@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r2ddabd06d94b60cfb0141e4abb23201c628ab925e30742f61a04d013@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r30a139c165b3da6e0d5536434ab1550534011b1fdfcd2f5d95892c5b@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r30a139c165b3da6e0d5536434ab1550534011b1fdfcd2f5d95892c5b@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r30e9fcba679d164158cc26236704c351954909c18cb2485d11038aa6@%3Cdev.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r30e9fcba679d164158cc26236704c351954909c18cb2485d11038aa6@%3Cdev.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r340e75c9bb6e8661b89e1cf2c52f4638a18312e57bd884722bc28f52@%3Cjira.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r340e75c9bb6e8661b89e1cf2c52f4638a18312e57bd884722bc28f52@%3Cjira.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r39fa6ec4b7e912d3e04ea68efd23e554ec9c8efa2c96f5b45104fc61@%3Cjira.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r39fa6ec4b7e912d3e04ea68efd23e554ec9c8efa2c96f5b45104fc61@%3Cjira.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r3f0450dcab7e63b5f233ccfbc6fca5f1867a75c8aa2493ea82732381@%3Cdev.jena.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r3f0450dcab7e63b5f233ccfbc6fca5f1867a75c8aa2493ea82732381@%3Cdev.jena.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r4e1619cfefcd031fac62064a3858f5c9229eef907bd5d8ef14c594fc@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r4e1619cfefcd031fac62064a3858f5c9229eef907bd5d8ef14c594fc@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r52c6cda14dc6315dc79e72d30109f4589e9c6300ef6dc1a019da32d4@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r52c6cda14dc6315dc79e72d30109f4589e9c6300ef6dc1a019da32d4@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r53cd5de57aaa126038c5301d8f518f3defab3c5b1c7e17c97bad08d8@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r53cd5de57aaa126038c5301d8f518f3defab3c5b1c7e17c97bad08d8@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r5ae6aaa8a2ce86145225c3516bb45d315c0454e3765d651527e5df8a@%3Ccommits.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r5ae6aaa8a2ce86145225c3516bb45d315c0454e3765d651527e5df8a@%3Ccommits.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r71bc13669be84c2ff45b74a67929bc2da905c152e12a39b406e3c2a0@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r71bc13669be84c2ff45b74a67929bc2da905c152e12a39b406e3c2a0@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r7212b874e575e59d648980d91bc22e684906aee9b211ab92da9591f5@%3Cdev.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r7212b874e575e59d648980d91bc22e684906aee9b211ab92da9591f5@%3Cdev.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r74329c671df713f61ae4620ee2452a0443ccad7f33c60e8ed7d21ff9@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r74329c671df713f61ae4620ee2452a0443ccad7f33c60e8ed7d21ff9@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r77af3ac7c3bfbd5454546e13faf7aec21d627bdcf36c9ca240436b94@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r77af3ac7c3bfbd5454546e13faf7aec21d627bdcf36c9ca240436b94@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r78fb6d2cf0ca332cfa43abd4471e75fa6c517ed9cdfcb950bff48d40@%3Cjira.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r78fb6d2cf0ca332cfa43abd4471e75fa6c517ed9cdfcb950bff48d40@%3Cjira.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r86aebd0387ae19b740b3eb28bad83fe6aceca0d6257eaa810a6e0002@%3Ccommits.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r86aebd0387ae19b740b3eb28bad83fe6aceca0d6257eaa810a6e0002@%3Ccommits.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r86e1c81e03f441855f127980e9b3d41939d04a7caea2b7ab718e2288@%3Cjira.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r86e1c81e03f441855f127980e9b3d41939d04a7caea2b7ab718e2288@%3Cjira.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r96cc126d3ee9aa42af9d3bb4baa94828b0a5f656584a50dcc594125f@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r96cc126d3ee9aa42af9d3bb4baa94828b0a5f656584a50dcc594125f@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9a027668558264c4897633e66bcb7784099fdec9f9b22c38c2442f00@%3Cusers.maven.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r9a027668558264c4897633e66bcb7784099fdec9f9b22c38c2442f00@%3Cusers.maven.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/r9a027668558264c4897633e66bcb7784099fdec9f9b22c38c2442f00%40%3Cusers.maven.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r9a027668558264c4897633e66bcb7784099fdec9f9b22c38c2442f00%40%3Cusers.maven.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/ra88a0eba7f84658cefcecc0143fd8bbad52c229ee5dfcbfdde7b6457@%3Cdev.jena.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/ra88a0eba7f84658cefcecc0143fd8bbad52c229ee5dfcbfdde7b6457@%3Cdev.jena.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/ra9d984eccfd2ae7726671e025f0296bf03786e5cdf872138110ac29b@%3Ccommits.druid.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/ra9d984eccfd2ae7726671e025f0296bf03786e5cdf872138110ac29b@%3Ccommits.druid.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rc7ae2530063d1cd1cf8e9fa130d10940760f927168d4063d23b8cd0a@%3Ccommits.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rc7ae2530063d1cd1cf8e9fa130d10940760f927168d4063d23b8cd0a@%3Ccommits.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rc9e441c1576bdc4375d32526d5cf457226928e9c87b9f54ded26271c@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rc9e441c1576bdc4375d32526d5cf457226928e9c87b9f54ded26271c@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rcd37d9214b08067a2e8f2b5b4fd123a1f8cb6008698d11ef44028c21@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rcd37d9214b08067a2e8f2b5b4fd123a1f8cb6008698d11ef44028c21@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rcd6c3a36f1dbc130da1b89d0f320db7040de71661a512695a8d513ac@%3Cdev.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rcd6c3a36f1dbc130da1b89d0f320db7040de71661a512695a8d513ac@%3Cdev.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rdcbad6d8ce72c79827ed8c635f9a62dd919bb21c94a0b64cab2efc31@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rdcbad6d8ce72c79827ed8c635f9a62dd919bb21c94a0b64cab2efc31@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/re75f8b3dbc5faa1640908f87e644d373e00f8b4e6ba3e2ba4bd2c80b@%3Ccommits.druid.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/re75f8b3dbc5faa1640908f87e644d373e00f8b4e6ba3e2ba4bd2c80b@%3Ccommits.druid.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/red3bf6cbfd99e36b0c0a4fa1cea1eef1eb300c6bd8f372f497341265@%3Cdev.kafka.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/red3bf6cbfd99e36b0c0a4fa1cea1eef1eb300c6bd8f372f497341265@%3Cdev.kafka.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rf9abfc0223747a56694825c050cc6b66627a293a32ea926b3de22402@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rf9abfc0223747a56694825c050cc6b66627a293a32ea926b3de22402@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rfc0db1f3c375087e69a239f9284ded72d04fbb55849eadde58fa9dc2@%3Cissues.karaf.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rfc0db1f3c375087e69a239f9284ded72d04fbb55849eadde58fa9dc2@%3Cissues.karaf.apache.org%3E" }, { "reference_url": "https://lists.apache.org/thread.html/rfc27e2727a20a574f39273e0432aa97486a332f9b3068f6ac1346594@%3Cdev.myfaces.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/rfc27e2727a20a574f39273e0432aa97486a332f9b3068f6ac1346594@%3Cdev.myfaces.apache.org%3E" }, { "reference_url": "https://maven.apache.org/docs/3.8.1/release-notes.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://maven.apache.org/docs/3.8.1/release-notes.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2021-26291", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-26291" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2022.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2022.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2022.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujul2022.html" }, { "reference_url": "https://www.whitesourcesoftware.com/resources/blog/maven-security-vulnerability-cve-2021-26291", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.whitesourcesoftware.com/resources/blog/maven-security-vulnerability-cve-2021-26291" }, { "reference_url": "https://www.whitesourcesoftware.com/resources/blog/maven-security-vulnerability-cve-2021-26291/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.whitesourcesoftware.com/resources/blog/maven-security-vulnerability-cve-2021-26291/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2021/04/23/5", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2021/04/23/5" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1955739", "reference_id": "1955739", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1955739" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988155", "reference_id": "988155", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988155" }, { "reference_url": "https://security.archlinux.org/AVG-1863", "reference_id": "AVG-1863", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1863" }, { "reference_url": "https://github.com/advisories/GHSA-2f88-5hg8-9x2x", "reference_id": "GHSA-2f88-5hg8-9x2x", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-2f88-5hg8-9x2x" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3880", "reference_id": "RHSA-2021:3880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1013", "reference_id": "RHSA-2022:1013", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1013" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1029", "reference_id": "RHSA-2022:1029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1334", "reference_id": "RHSA-2023:1334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3198", "reference_id": "RHSA-2023:3198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3198" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0776", "reference_id": "RHSA-2024:0776", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0776" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0778", "reference_id": "RHSA-2024:0778", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0778" }, { "reference_url": "https://usn.ubuntu.com/5805-1/", "reference_id": "USN-5805-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5805-1/" }, { "reference_url": "https://usn.ubuntu.com/USN-5245-1/", "reference_id": "USN-USN-5245-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-5245-1/" } ], "weaknesses": [ { "cwe_id": 346, "name": "Origin Validation Error", "description": "The product does not properly verify that the source of data or communication is valid." }, { "cwe_id": 200, "name": "Exposure of Sensitive Information to an Unauthorized Actor", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "4.0 - 10.0", "exploitability": "0.5", "weighted_severity": "9.0", "risk_score": 4.5, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m3g5-ua28-afd2" }