Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-4rcx-xfn5-7kdb

Summary Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /j_security_check with malformed URL encoding of passwords, related to improper error checking in the (1) MemoryRealm, (2) DataSourceRealm, and (3) JDBCRealm authentication realms, as demonstrated by a % (percent) value for the j_password parameter.

Aliases

alias	CVE-2009-0580

alias	GHSA-w227-xcfx-3pj8

Fixed_packages

url	pkg:apache/tomcat@4.1.40
purl	pkg:apache/tomcat@4.1.40
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.40

url pkg:apache/tomcat@5.5.28

purl pkg:apache/tomcat@5.5.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1qt3-ctae-sfgw

vulnerability	VCID-g998-xymt-fudu

vulnerability	VCID-vm4b-26sq-tfev

vulnerability	VCID-wsn2-pd9b-b3g8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.28

url pkg:apache/tomcat@6.0.20

purl pkg:apache/tomcat@6.0.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1qt3-ctae-sfgw

vulnerability	VCID-g998-xymt-fudu

vulnerability	VCID-vm4b-26sq-tfev

vulnerability	VCID-wsn2-pd9b-b3g8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.20

url	pkg:ebuild/www-servers/tomcat@7.0.23
purl	pkg:ebuild/www-servers/tomcat@7.0.23
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/www-servers/tomcat@7.0.23

Affected_packages

url pkg:apache/tomcat@4.1.0

purl pkg:apache/tomcat@4.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-99es-8ecb-uub8

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-afg3-t31c-ffgp

vulnerability	VCID-bhq7-d545-27bj

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-fvvt-kufu-k3a6

vulnerability	VCID-j2sv-62js-xbav

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-mp3r-5531-uqg5

vulnerability	VCID-p45v-qpgg-qqfj

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-q7jp-hn4a-4kec

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r1bk-cqhx-ebc5

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-ssnx-gz8e-87ab

vulnerability	VCID-tcju-3rvu-wkht

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.0

url pkg:apache/tomcat@4.1.39

purl pkg:apache/tomcat@4.1.39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@4.1.39

url pkg:apache/tomcat@5.5.0

purl pkg:apache/tomcat@5.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1qt3-ctae-sfgw

vulnerability	VCID-241m-q6vd-kudk

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7kjm-p97s-zuh8

vulnerability	VCID-86ur-vudp-4yc2

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-bhq7-d545-27bj

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-d9ys-kxh6-nkgr

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dhun-hj5q-dfch

vulnerability	VCID-f2zy-gq57-ufat

vulnerability	VCID-fvvt-kufu-k3a6

vulnerability	VCID-g998-xymt-fudu

vulnerability	VCID-hhk9-cr54-8fgc

vulnerability	VCID-mctd-9zgv-5qgp

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-n76n-ywja-rbhh

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-q7jp-hn4a-4kec

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-quwu-ep21-cyew

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-skar-qk57-qkdv

vulnerability	VCID-su1y-2bxh-9qe2

vulnerability	VCID-tcju-3rvu-wkht

vulnerability	VCID-tfn5-6ckq-wyce

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-vm4b-26sq-tfev

vulnerability	VCID-wsn2-pd9b-b3g8

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.0

url pkg:apache/tomcat@5.5.27

purl pkg:apache/tomcat@5.5.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@5.5.27

url pkg:apache/tomcat@6.0.0

purl pkg:apache/tomcat@6.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18q4-zark-s7a7

vulnerability	VCID-1k8f-vsg1-k3d6

vulnerability	VCID-1qt3-ctae-sfgw

vulnerability	VCID-241m-q6vd-kudk

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-3cr9-g81m-4ugy

vulnerability	VCID-3n4t-bvb1-5qer

vulnerability	VCID-3r3s-q21j-c3au

vulnerability	VCID-4mkw-7haq-pkgn

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-68fk-4g86-ekbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7cpu-h5fr-8ffd

vulnerability	VCID-7ej8-5f77-cybb

vulnerability	VCID-7kjm-p97s-zuh8

vulnerability	VCID-7pd9-1r19-73fe

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95d1-arxd-hkd1

vulnerability	VCID-a1by-zvtm-akdc

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-d9ys-kxh6-nkgr

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dhun-hj5q-dfch

vulnerability	VCID-egup-27ub-6uaf

vulnerability	VCID-f2zy-gq57-ufat

vulnerability	VCID-fpuc-fe6m-47c6

vulnerability	VCID-g998-xymt-fudu

vulnerability	VCID-h9ds-trhx-m7aj

vulnerability	VCID-hhk9-cr54-8fgc

vulnerability	VCID-hhkg-mfp5-2kax

vulnerability	VCID-jf7u-dvpd-b7f4

vulnerability	VCID-kagr-74d9-kyhx

vulnerability	VCID-kgd1-bzst-muh7

vulnerability	VCID-kzzv-rhya-j7dd

vulnerability	VCID-m1zd-uytj-3bej

vulnerability	VCID-mctd-9zgv-5qgp

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-mwk8-b5c9-kbb9

vulnerability	VCID-n76n-ywja-rbhh

vulnerability	VCID-p4dn-y54m-8fd1

vulnerability	VCID-p6ch-pc73-b3ck

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-quwu-ep21-cyew

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-su1y-2bxh-9qe2

vulnerability	VCID-tcbc-3kgt-muam

vulnerability	VCID-tcju-3rvu-wkht

vulnerability	VCID-tfn5-6ckq-wyce

vulnerability	VCID-tfrs-d458-tfaq

vulnerability	VCID-twh8-87va-juf9

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-vd1s-m27a-8ucc

vulnerability	VCID-vm4b-26sq-tfev

vulnerability	VCID-w82a-7kk2-p3f1

vulnerability	VCID-wsn2-pd9b-b3g8

vulnerability	VCID-xf8r-kqxb-7qdy

vulnerability	VCID-ygvw-69am-s7ae

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.0

url pkg:apache/tomcat@6.0.18

purl pkg:apache/tomcat@6.0.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:apache/tomcat@6.0.18

url pkg:maven/org.apache.tomcat/tomcat@4.1.0

purl pkg:maven/org.apache.tomcat/tomcat@4.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-99es-8ecb-uub8

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-afg3-t31c-ffgp

vulnerability	VCID-bhq7-d545-27bj

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-fvvt-kufu-k3a6

vulnerability	VCID-j2sv-62js-xbav

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-mp3r-5531-uqg5

vulnerability	VCID-p45v-qpgg-qqfj

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-q7jp-hn4a-4kec

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r1bk-cqhx-ebc5

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-rwvj-tq6x-2ubs

vulnerability	VCID-ssnx-gz8e-87ab

vulnerability	VCID-tcju-3rvu-wkht

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.0

url pkg:maven/org.apache.tomcat/tomcat@4.1.39

purl pkg:maven/org.apache.tomcat/tomcat@4.1.39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@4.1.39

url pkg:maven/org.apache.tomcat/tomcat@5.0.0

purl pkg:maven/org.apache.tomcat/tomcat@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-86ur-vudp-4yc2

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-bhq7-d545-27bj

vulnerability	VCID-jau7-gfz8-dkfa

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-q7jp-hn4a-4kec

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-quwu-ep21-cyew

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-skar-qk57-qkdv

vulnerability	VCID-tcju-3rvu-wkht

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@5.0.0

url pkg:maven/org.apache.tomcat/tomcat@5.5.0

purl pkg:maven/org.apache.tomcat/tomcat@5.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12du-1vyt-bkgx

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1qt3-ctae-sfgw

vulnerability	VCID-1v6c-f56v-hqh1

vulnerability	VCID-241m-q6vd-kudk

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7kjm-p97s-zuh8

vulnerability	VCID-86ur-vudp-4yc2

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-8ebv-6941-jqdy

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-bhq7-d545-27bj

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-d9ys-kxh6-nkgr

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dhun-hj5q-dfch

vulnerability	VCID-egye-da2v-4ybh

vulnerability	VCID-f2zy-gq57-ufat

vulnerability	VCID-fvvt-kufu-k3a6

vulnerability	VCID-g7eg-s99s-xqe7

vulnerability	VCID-g998-xymt-fudu

vulnerability	VCID-hhk9-cr54-8fgc

vulnerability	VCID-mctd-9zgv-5qgp

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-n76n-ywja-rbhh

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-q7jp-hn4a-4kec

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-quwu-ep21-cyew

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r5rc-rdd9-bfbk

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-rrdj-ssn7-zfdj

vulnerability	VCID-rwvj-tq6x-2ubs

vulnerability	VCID-skar-qk57-qkdv

vulnerability	VCID-su1y-2bxh-9qe2

vulnerability	VCID-tcju-3rvu-wkht

vulnerability	VCID-tfn5-6ckq-wyce

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-vm4b-26sq-tfev

vulnerability	VCID-wsn2-pd9b-b3g8

vulnerability	VCID-zbbr-wded-9ffj

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@5.5.0

url pkg:maven/org.apache.tomcat/tomcat@5.5.27

purl pkg:maven/org.apache.tomcat/tomcat@5.5.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@5.5.27

url pkg:maven/org.apache.tomcat/tomcat@6.0.0

purl pkg:maven/org.apache.tomcat/tomcat@6.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-12du-1vyt-bkgx

vulnerability	VCID-18q4-zark-s7a7

vulnerability	VCID-1k8f-vsg1-k3d6

vulnerability	VCID-1qt3-ctae-sfgw

vulnerability	VCID-1v6c-f56v-hqh1

vulnerability	VCID-241m-q6vd-kudk

vulnerability	VCID-27q8-96un-9fbk

vulnerability	VCID-3cr9-g81m-4ugy

vulnerability	VCID-3n4t-bvb1-5qer

vulnerability	VCID-3r3s-q21j-c3au

vulnerability	VCID-4mkw-7haq-pkgn

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-68fk-4g86-ekbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7cpu-h5fr-8ffd

vulnerability	VCID-7ej8-5f77-cybb

vulnerability	VCID-7kjm-p97s-zuh8

vulnerability	VCID-7pd9-1r19-73fe

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-8ebv-6941-jqdy

vulnerability	VCID-95d1-arxd-hkd1

vulnerability	VCID-a1by-zvtm-akdc

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-d9ys-kxh6-nkgr

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dhun-hj5q-dfch

vulnerability	VCID-egup-27ub-6uaf

vulnerability	VCID-egye-da2v-4ybh

vulnerability	VCID-f2zy-gq57-ufat

vulnerability	VCID-fpuc-fe6m-47c6

vulnerability	VCID-g7eg-s99s-xqe7

vulnerability	VCID-g998-xymt-fudu

vulnerability	VCID-h9ds-trhx-m7aj

vulnerability	VCID-hhk9-cr54-8fgc

vulnerability	VCID-hhkg-mfp5-2kax

vulnerability	VCID-jau7-gfz8-dkfa

vulnerability	VCID-jf7u-dvpd-b7f4

vulnerability	VCID-jtg7-217a-qqhk

vulnerability	VCID-kagr-74d9-kyhx

vulnerability	VCID-kgd1-bzst-muh7

vulnerability	VCID-kzzv-rhya-j7dd

vulnerability	VCID-m1zd-uytj-3bej

vulnerability	VCID-mctd-9zgv-5qgp

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-mwk8-b5c9-kbb9

vulnerability	VCID-n76n-ywja-rbhh

vulnerability	VCID-p4dn-y54m-8fd1

vulnerability	VCID-p6ch-pc73-b3ck

vulnerability	VCID-peya-mr7j-vugf

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-quwu-ep21-cyew

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r5rc-rdd9-bfbk

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-rrdj-ssn7-zfdj

vulnerability	VCID-rwvj-tq6x-2ubs

vulnerability	VCID-su1y-2bxh-9qe2

vulnerability	VCID-t9y6-suc2-2kcg

vulnerability	VCID-ta1m-dh8x-nubc

vulnerability	VCID-tcbc-3kgt-muam

vulnerability	VCID-tcju-3rvu-wkht

vulnerability	VCID-tfn5-6ckq-wyce

vulnerability	VCID-tfrs-d458-tfaq

vulnerability	VCID-twh8-87va-juf9

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-vd1s-m27a-8ucc

vulnerability	VCID-vm4b-26sq-tfev

vulnerability	VCID-w82a-7kk2-p3f1

vulnerability	VCID-wsn2-pd9b-b3g8

vulnerability	VCID-xf8r-kqxb-7qdy

vulnerability	VCID-ygvw-69am-s7ae

vulnerability	VCID-zbbr-wded-9ffj

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.0

url pkg:maven/org.apache.tomcat/tomcat@6.0.18

purl pkg:maven/org.apache.tomcat/tomcat@6.0.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.tomcat/tomcat@6.0.18

url pkg:rpm/redhat/geronimo-specs@1.0-0.M4?arch=1jpp_10rh

purl pkg:rpm/redhat/geronimo-specs@1.0-0.M4?arch=1jpp_10rh

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/geronimo-specs@1.0-0.M4%3Farch=1jpp_10rh

url pkg:rpm/redhat/glassfish-jaxb@2.1.4-1.11.ep1?arch=el4

purl pkg:rpm/redhat/glassfish-jaxb@2.1.4-1.11.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/glassfish-jaxb@2.1.4-1.11.ep1%3Farch=el4

url pkg:rpm/redhat/glassfish-jaxb@2.1.4-1.11.1.ep1?arch=el5

purl pkg:rpm/redhat/glassfish-jaxb@2.1.4-1.11.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/glassfish-jaxb@2.1.4-1.11.1.ep1%3Farch=el5

url pkg:rpm/redhat/hibernate3@1:3.2.4-1.SP1_CP08.0jpp.ep1.2?arch=el4

purl pkg:rpm/redhat/hibernate3@1:3.2.4-1.SP1_CP08.0jpp.ep1.2?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3@1:3.2.4-1.SP1_CP08.0jpp.ep1.2%3Farch=el4

url pkg:rpm/redhat/hibernate3@1:3.2.4-1.SP1_CP08.0jpp.ep1.2.3?arch=el5

purl pkg:rpm/redhat/hibernate3@1:3.2.4-1.SP1_CP08.0jpp.ep1.2.3?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3@1:3.2.4-1.SP1_CP08.0jpp.ep1.2.3%3Farch=el5

url pkg:rpm/redhat/hibernate3-annotations@3.3.1-1.10.GA_CP01.ep1?arch=el4

purl pkg:rpm/redhat/hibernate3-annotations@3.3.1-1.10.GA_CP01.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-annotations@3.3.1-1.10.GA_CP01.ep1%3Farch=el4

url pkg:rpm/redhat/hibernate3-annotations@3.3.1-1.10.1GA_CP01.ep1?arch=el5

purl pkg:rpm/redhat/hibernate3-annotations@3.3.1-1.10.1GA_CP01.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-annotations@3.3.1-1.10.1GA_CP01.ep1%3Farch=el5

url pkg:rpm/redhat/hibernate3-commons-annotations@3.0.0-1jpp.ep1.5?arch=el4

purl pkg:rpm/redhat/hibernate3-commons-annotations@3.0.0-1jpp.ep1.5?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-commons-annotations@3.0.0-1jpp.ep1.5%3Farch=el4

url pkg:rpm/redhat/hibernate3-commons-annotations@3.0.0-1jpp.ep1.5.2?arch=el5

purl pkg:rpm/redhat/hibernate3-commons-annotations@3.0.0-1jpp.ep1.5.2?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-commons-annotations@3.0.0-1jpp.ep1.5.2%3Farch=el5

url pkg:rpm/redhat/hibernate3-entitymanager@3.3.2-2.4.ep1?arch=el4

purl pkg:rpm/redhat/hibernate3-entitymanager@3.3.2-2.4.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-entitymanager@3.3.2-2.4.ep1%3Farch=el4

url pkg:rpm/redhat/hibernate3-entitymanager@3.3.2-2.4.1.ep1?arch=el5

purl pkg:rpm/redhat/hibernate3-entitymanager@3.3.2-2.4.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-entitymanager@3.3.2-2.4.1.ep1%3Farch=el5

url pkg:rpm/redhat/hibernate3-validator@3.0.0-1jpp.ep1.8?arch=el4

purl pkg:rpm/redhat/hibernate3-validator@3.0.0-1jpp.ep1.8?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-validator@3.0.0-1jpp.ep1.8%3Farch=el4

url pkg:rpm/redhat/hibernate3-validator@3.0.0-1jpp.ep1.8.3?arch=el5

purl pkg:rpm/redhat/hibernate3-validator@3.0.0-1jpp.ep1.8.3?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hibernate3-validator@3.0.0-1jpp.ep1.8.3%3Farch=el5

url pkg:rpm/redhat/hsqldb@1:1.8.0.8-2.patch02.1jpp.ep1.2?arch=el4

purl pkg:rpm/redhat/hsqldb@1:1.8.0.8-2.patch02.1jpp.ep1.2?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/hsqldb@1:1.8.0.8-2.patch02.1jpp.ep1.2%3Farch=el4

url pkg:rpm/redhat/jakarta-slide-webdavclient@2.1-9.2?arch=el5

purl pkg:rpm/redhat/jakarta-slide-webdavclient@2.1-9.2?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jakarta-slide-webdavclient@2.1-9.2%3Farch=el5

url pkg:rpm/redhat/jakarta-slide-webdavclient@2.1-9.2?arch=el4

purl pkg:rpm/redhat/jakarta-slide-webdavclient@2.1-9.2?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jakarta-slide-webdavclient@2.1-9.2%3Farch=el4

url pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP07.5.ep1?arch=el4

purl pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP07.5.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP07.5.ep1%3Farch=el4

url pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP07.5.1.ep1?arch=el5

purl pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP07.5.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossas@4.2.0-4.GA_CP07.5.1.ep1%3Farch=el5

url pkg:rpm/redhat/jbossas@4.3.0-4.GA_CP05.6.ep1?arch=el4

purl pkg:rpm/redhat/jbossas@4.3.0-4.GA_CP05.6.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossas@4.3.0-4.GA_CP05.6.ep1%3Farch=el4

url pkg:rpm/redhat/jbossas@4.3.0-4.GA_CP05.6.1.ep1?arch=el5

purl pkg:rpm/redhat/jbossas@4.3.0-4.GA_CP05.6.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossas@4.3.0-4.GA_CP05.6.1.ep1%3Farch=el5

url pkg:rpm/redhat/jboss-cache@1.4.1-6.SP13.1.ep1?arch=el4

purl pkg:rpm/redhat/jboss-cache@1.4.1-6.SP13.1.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-cache@1.4.1-6.SP13.1.ep1%3Farch=el4

url pkg:rpm/redhat/jboss-cache@1.4.1-6.SP13.1.ep1?arch=el5

purl pkg:rpm/redhat/jboss-cache@1.4.1-6.SP13.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-cache@1.4.1-6.SP13.1.ep1%3Farch=el5

url pkg:rpm/redhat/jboss-messaging@1.4.0-2.SP3_CP08.1.ep1?arch=el4

purl pkg:rpm/redhat/jboss-messaging@1.4.0-2.SP3_CP08.1.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-messaging@1.4.0-2.SP3_CP08.1.ep1%3Farch=el4

url pkg:rpm/redhat/jboss-messaging@1.4.0-2.SP3_CP08.1.ep1?arch=el5

purl pkg:rpm/redhat/jboss-messaging@1.4.0-2.SP3_CP08.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-messaging@1.4.0-2.SP3_CP08.1.ep1%3Farch=el5

url pkg:rpm/redhat/jboss-remoting@2.2.3-2.ep1?arch=el4

purl pkg:rpm/redhat/jboss-remoting@2.2.3-2.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-remoting@2.2.3-2.ep1%3Farch=el4

url pkg:rpm/redhat/jboss-remoting@2.2.3-2.ep1?arch=el5

purl pkg:rpm/redhat/jboss-remoting@2.2.3-2.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-remoting@2.2.3-2.ep1%3Farch=el5

url pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.13?arch=el5

purl pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.13?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.13%3Farch=el5

url pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.19?arch=el4

purl pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.19?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-seam@1.2.1-1.ep1.19%3Farch=el4

url pkg:rpm/redhat/jboss-seam@1.2.1-3.JBPAPP_4_3_0_GA.ep1.11.el5?arch=1

purl pkg:rpm/redhat/jboss-seam@1.2.1-3.JBPAPP_4_3_0_GA.ep1.11.el5?arch=1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-seam@1.2.1-3.JBPAPP_4_3_0_GA.ep1.11.el5%3Farch=1

url pkg:rpm/redhat/jboss-seam@1.2.1-3.JBPAPP_4_3_0_GA.ep1.15?arch=el4

purl pkg:rpm/redhat/jboss-seam@1.2.1-3.JBPAPP_4_3_0_GA.ep1.15?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jboss-seam@1.2.1-3.JBPAPP_4_3_0_GA.ep1.15%3Farch=el4

url pkg:rpm/redhat/jbossts@1:4.2.3-1.SP5_CP05.1jpp.ep1.1?arch=el5

purl pkg:rpm/redhat/jbossts@1:4.2.3-1.SP5_CP05.1jpp.ep1.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossts@1:4.2.3-1.SP5_CP05.1jpp.ep1.1%3Farch=el5

url pkg:rpm/redhat/jbossts@1:4.2.3-1.SP5_CP05.1jpp.ep1.1?arch=el4

purl pkg:rpm/redhat/jbossts@1:4.2.3-1.SP5_CP05.1jpp.ep1.1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossts@1:4.2.3-1.SP5_CP05.1jpp.ep1.1%3Farch=el4

url pkg:rpm/redhat/jbossweb@2.0.0-6.CP11.0jpp.ep1.1?arch=el5

purl pkg:rpm/redhat/jbossweb@2.0.0-6.CP11.0jpp.ep1.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossweb@2.0.0-6.CP11.0jpp.ep1.1%3Farch=el5

url pkg:rpm/redhat/jbossweb@2.0.0-6.CP11.0jpp.ep1.1?arch=el4

purl pkg:rpm/redhat/jbossweb@2.0.0-6.CP11.0jpp.ep1.1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossweb@2.0.0-6.CP11.0jpp.ep1.1%3Farch=el4

url pkg:rpm/redhat/jbossws@2.0.1-3.SP2_CP06.3.ep1?arch=el4

purl pkg:rpm/redhat/jbossws@2.0.1-3.SP2_CP06.3.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws@2.0.1-3.SP2_CP06.3.ep1%3Farch=el4

url pkg:rpm/redhat/jbossws@2.0.1-3.SP2_CP06.3.1.ep1?arch=el5

purl pkg:rpm/redhat/jbossws@2.0.1-3.SP2_CP06.3.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws@2.0.1-3.SP2_CP06.3.1.ep1%3Farch=el5

url pkg:rpm/redhat/jbossws-common@1.0.0-2.GA_CP04.1.ep1?arch=el5

purl pkg:rpm/redhat/jbossws-common@1.0.0-2.GA_CP04.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws-common@1.0.0-2.GA_CP04.1.ep1%3Farch=el5

url pkg:rpm/redhat/jbossws-common@1.0.0-2.GA_CP04.1.ep1?arch=el4

purl pkg:rpm/redhat/jbossws-common@1.0.0-2.GA_CP04.1.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws-common@1.0.0-2.GA_CP04.1.ep1%3Farch=el4

url pkg:rpm/redhat/jbossws-framework@2.0.1-1.GA_CP04.2.ep1?arch=el5

purl pkg:rpm/redhat/jbossws-framework@2.0.1-1.GA_CP04.2.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws-framework@2.0.1-1.GA_CP04.2.ep1%3Farch=el5

url pkg:rpm/redhat/jbossws-framework@2.0.1-1.GA_CP04.2.ep1?arch=el4

purl pkg:rpm/redhat/jbossws-framework@2.0.1-1.GA_CP04.2.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws-framework@2.0.1-1.GA_CP04.2.ep1%3Farch=el4

url pkg:rpm/redhat/jbossws-spi@1.0.0-1.GA_CP02.1.ep1?arch=el5

purl pkg:rpm/redhat/jbossws-spi@1.0.0-1.GA_CP02.1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws-spi@1.0.0-1.GA_CP02.1.ep1%3Farch=el5

url pkg:rpm/redhat/jbossws-spi@1.0.0-1.GA_CP02.1.ep1?arch=el4

purl pkg:rpm/redhat/jbossws-spi@1.0.0-1.GA_CP02.1.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbossws-spi@1.0.0-1.GA_CP02.1.ep1%3Farch=el4

url pkg:rpm/redhat/jgroups@1:2.4.6-1.ep1?arch=el4

purl pkg:rpm/redhat/jgroups@1:2.4.6-1.ep1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jgroups@1:2.4.6-1.ep1%3Farch=el4

url pkg:rpm/redhat/jgroups@1:2.4.6-1.ep1?arch=el5

purl pkg:rpm/redhat/jgroups@1:2.4.6-1.ep1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jgroups@1:2.4.6-1.ep1%3Farch=el5

url pkg:rpm/redhat/pcsc-lite@1.3.3-3?arch=el4

purl pkg:rpm/redhat/pcsc-lite@1.3.3-3?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pcsc-lite@1.3.3-3%3Farch=el4

url pkg:rpm/redhat/rh-eap-docs@4.2.0-5.GA_CP07.ep1.1?arch=el4

purl pkg:rpm/redhat/rh-eap-docs@4.2.0-5.GA_CP07.ep1.1?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-eap-docs@4.2.0-5.GA_CP07.ep1.1%3Farch=el4

url pkg:rpm/redhat/rh-eap-docs@4.2.0-5.GA_CP07.ep1.1.1?arch=el5

purl pkg:rpm/redhat/rh-eap-docs@4.2.0-5.GA_CP07.ep1.1.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-eap-docs@4.2.0-5.GA_CP07.ep1.1.1%3Farch=el5

url pkg:rpm/redhat/rh-eap-docs@4.3.0-5.GA_CP05.ep1.2?arch=el4

purl pkg:rpm/redhat/rh-eap-docs@4.3.0-5.GA_CP05.ep1.2?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-eap-docs@4.3.0-5.GA_CP05.ep1.2%3Farch=el4

url pkg:rpm/redhat/rh-eap-docs@4.3.0-5.GA_CP05.ep1.2.1?arch=el5

purl pkg:rpm/redhat/rh-eap-docs@4.3.0-5.GA_CP05.ep1.2.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-eap-docs@4.3.0-5.GA_CP05.ep1.2.1%3Farch=el5

url pkg:rpm/redhat/rhpki-ca@7.3.0-20?arch=el4

purl pkg:rpm/redhat/rhpki-ca@7.3.0-20?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-ca@7.3.0-20%3Farch=el4

url pkg:rpm/redhat/rhpki-java-tools@7.3.0-10?arch=el4

purl pkg:rpm/redhat/rhpki-java-tools@7.3.0-10?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-java-tools@7.3.0-10%3Farch=el4

url pkg:rpm/redhat/rhpki-kra@7.3.0-14?arch=el4

purl pkg:rpm/redhat/rhpki-kra@7.3.0-14?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-kra@7.3.0-14%3Farch=el4

url pkg:rpm/redhat/rhpki-manage@7.3.0-19?arch=el4

purl pkg:rpm/redhat/rhpki-manage@7.3.0-19?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-manage@7.3.0-19%3Farch=el4

url pkg:rpm/redhat/rhpki-native-tools@7.3.0-6?arch=el4

purl pkg:rpm/redhat/rhpki-native-tools@7.3.0-6?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-native-tools@7.3.0-6%3Farch=el4

url pkg:rpm/redhat/rhpki-ocsp@7.3.0-13?arch=el4

purl pkg:rpm/redhat/rhpki-ocsp@7.3.0-13?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-ocsp@7.3.0-13%3Farch=el4

url pkg:rpm/redhat/rhpki-tks@7.3.0-13?arch=el4

purl pkg:rpm/redhat/rhpki-tks@7.3.0-13?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhpki-tks@7.3.0-13%3Farch=el4

url pkg:rpm/redhat/tomcat5@5.5.23-0jpp_4rh?arch=16

purl pkg:rpm/redhat/tomcat5@5.5.23-0jpp_4rh?arch=16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18j8-kwdv-dyak

vulnerability	VCID-1nh6-77uc-xbak

vulnerability	VCID-2jnv-segx-zkfd

vulnerability	VCID-3kyb-4yvt-f7e1

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-6d43-sjqw-tbbp

vulnerability	VCID-6epr-2hbd-skcz

vulnerability	VCID-6p3e-4u8s-17ep

vulnerability	VCID-7969-7a8h-zyhh

vulnerability	VCID-7ftk-sajb-akh4

vulnerability	VCID-87p8-zvvf-y7dm

vulnerability	VCID-88v7-kc2y-bfd7

vulnerability	VCID-95zk-suqh-j7e7

vulnerability	VCID-9zzc-scyf-ckdb

vulnerability	VCID-a9cu-fxqw-xkdg

vulnerability	VCID-acmu-9eqb-fya5

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-dqkp-f1my-dbg9

vulnerability	VCID-fn5k-e2jr-6ube

vulnerability	VCID-g2pp-aahn-mfcd

vulnerability	VCID-h5vb-1c3n-gfbf

vulnerability	VCID-j3mb-97k1-uuh9

vulnerability	VCID-jvhf-ecm7-fbb8

vulnerability	VCID-kgpj-aexq-7kah

vulnerability	VCID-me4r-1qb6-dqdf

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-nhce-b7j4-huaa

vulnerability	VCID-pdj3-4txb-vych

vulnerability	VCID-phbq-79xp-4fe1

vulnerability	VCID-pj4f-awuq-73g6

vulnerability	VCID-qdck-q54n-rkcv

vulnerability	VCID-qxkf-4ddv-j3b7

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-srxw-jjvr-p3d5

vulnerability	VCID-ss79-kcpu-mqd5

vulnerability	VCID-umuk-3n1q-3qet

vulnerability	VCID-v94p-bxm3-akfd

vulnerability	VCID-wycq-jwzz-q7hf

vulnerability	VCID-y29n-egjs-tqby

vulnerability	VCID-zkbr-1m2z-ufe7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat5@5.5.23-0jpp_4rh%3Farch=16

url pkg:rpm/redhat/tomcat5@5.5.23-0jpp.7.el5_3?arch=2

purl pkg:rpm/redhat/tomcat5@5.5.23-0jpp.7.el5_3?arch=2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-bung-pa58-ayfv

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat5@5.5.23-0jpp.7.el5_3%3Farch=2

url pkg:rpm/redhat/tomcat5@5.5.23-0jpp.9.6.ep5?arch=el5

purl pkg:rpm/redhat/tomcat5@5.5.23-0jpp.9.6.ep5?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat5@5.5.23-0jpp.9.6.ep5%3Farch=el5

url pkg:rpm/redhat/tomcat5@5.5.23-1.patch07.19.ep5?arch=el4

purl pkg:rpm/redhat/tomcat5@5.5.23-1.patch07.19.ep5?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

vulnerability	VCID-v94p-bxm3-akfd

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat5@5.5.23-1.patch07.19.ep5%3Farch=el4

url pkg:rpm/redhat/tomcat6@6.0.18-11.3.ep5?arch=el4

purl pkg:rpm/redhat/tomcat6@6.0.18-11.3.ep5?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.18-11.3.ep5%3Farch=el4

url pkg:rpm/redhat/tomcat6@6.0.18-12.0.ep5?arch=el5

purl pkg:rpm/redhat/tomcat6@6.0.18-12.0.ep5?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-dcrp-rae1-zfcm

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/tomcat6@6.0.18-12.0.ep5%3Farch=el5

url pkg:rpm/redhat/xerces-j2@2.7.1-9jpp.ep1.2?arch=el4

purl pkg:rpm/redhat/xerces-j2@2.7.1-9jpp.ep1.2?arch=el4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4rcx-xfn5-7kdb

vulnerability	VCID-mnf8-t3ew-4fgb

vulnerability	VCID-r84b-7ay9-ekcm

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xerces-j2@2.7.1-9jpp.ep1.2%3Farch=el4

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0580.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0580.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-0580

reference_id

reference_type

scores

value	0.88173
scoring_system	epss
scoring_elements	0.99488
published_at	2026-04-08T12:55:00Z

value	0.88173
scoring_system	epss
scoring_elements	0.99483
published_at	2026-04-02T12:55:00Z

value	0.88173
scoring_system	epss
scoring_elements	0.99485
published_at	2026-04-04T12:55:00Z

value	0.88173
scoring_system	epss
scoring_elements	0.99491
published_at	2026-04-16T12:55:00Z

value	0.88173
scoring_system	epss
scoring_elements	0.9949
published_at	2026-04-11T12:55:00Z

value	0.88173
scoring_system	epss
scoring_elements	0.99487
published_at	2026-04-07T12:55:00Z

value	0.88173
scoring_system	epss
scoring_elements	0.99489
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-0580

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/50930

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/50930

reference_url

https://github.com/apache/tomcat

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/tomcat

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

reference_url

https://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html

reference_url

https://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html

reference_url

https://marc.info/?l=bugtraq&m=127420533226623&w=2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://marc.info/?l=bugtraq&m=127420533226623&w=2

reference_url

https://marc.info/?l=bugtraq&m=129070310906557&w=2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://marc.info/?l=bugtraq&m=129070310906557&w=2

reference_url

https://marc.info/?l=bugtraq&m=133469267822771&w=2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://marc.info/?l=bugtraq&m=133469267822771&w=2

reference_url

https://marc.info/?l=bugtraq&m=136485229118404&w=2

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://marc.info/?l=bugtraq&m=136485229118404&w=2

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18915

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18915

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6628

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6628

reference_url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9101

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9101

reference_url

https://svn.apache.org/viewvc?rev=747840&view=rev

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://svn.apache.org/viewvc?rev=747840&view=rev

reference_url

https://svn.apache.org/viewvc?rev=781379&view=rev

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://svn.apache.org/viewvc?rev=781379&view=rev

reference_url

https://svn.apache.org/viewvc?rev=781382&view=rev

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://svn.apache.org/viewvc?rev=781382&view=rev

reference_url	https://svn.apache.org/viewvc?view=rev&rev=747840
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=747840

reference_url	https://svn.apache.org/viewvc?view=rev&rev=781379
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=781379

reference_url	https://svn.apache.org/viewvc?view=rev&rev=781382
reference_id
reference_type
scores
url	https://svn.apache.org/viewvc?view=rev&rev=781382

reference_url

https://tomcat.apache.org/security-4.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-4.html

reference_url

https://tomcat.apache.org/security-5.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-5.html

reference_url

https://tomcat.apache.org/security-6.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://tomcat.apache.org/security-6.html

reference_url

https://www.debian.org/security/2011/dsa-2207

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.debian.org/security/2011/dsa-2207

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01156.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01156.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01216.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01216.html

reference_url

https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01246.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01246.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=503978
reference_id	503978
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=503978

reference_url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0580

reference_id

CVE-2009-0580

reference_type

scores

value	Low
scoring_system	apache_tomcat
scoring_elements

url

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0580

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2009-0580

reference_id

CVE-2009-0580

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2009-0580

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/33023.txt
reference_id	CVE-2009-0580;OSVDB-55055
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/33023.txt

reference_url	https://www.securityfocus.com/bid/35196/info
reference_id	CVE-2009-0580;OSVDB-55055
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/35196/info

reference_url

https://github.com/advisories/GHSA-w227-xcfx-3pj8

reference_id

GHSA-w227-xcfx-3pj8

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-w227-xcfx-3pj8

reference_url	https://security.gentoo.org/glsa/201206-24
reference_id	GLSA-201206-24
reference_type
scores
url	https://security.gentoo.org/glsa/201206-24

reference_url	https://access.redhat.com/errata/RHSA-2009:1143
reference_id	RHSA-2009:1143
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1143

reference_url	https://access.redhat.com/errata/RHSA-2009:1144
reference_id	RHSA-2009:1144
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1144

reference_url	https://access.redhat.com/errata/RHSA-2009:1145
reference_id	RHSA-2009:1145
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1145

reference_url	https://access.redhat.com/errata/RHSA-2009:1146
reference_id	RHSA-2009:1146
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1146

reference_url	https://access.redhat.com/errata/RHSA-2009:1454
reference_id	RHSA-2009:1454
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1454

reference_url	https://access.redhat.com/errata/RHSA-2009:1506
reference_id	RHSA-2009:1506
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1506

reference_url	https://access.redhat.com/errata/RHSA-2009:1563
reference_id	RHSA-2009:1563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1563

reference_url	https://access.redhat.com/errata/RHSA-2009:1616
reference_id	RHSA-2009:1616
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1616

reference_url	https://usn.ubuntu.com/788-1/
reference_id	USN-788-1
reference_type
scores
url	https://usn.ubuntu.com/788-1/

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	200
name	Exposure of Sensitive Information to an Unauthorized Actor
description	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

cwe_id	707
name	Improper Neutralization
description	The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being read from an upstream component or sent to a downstream component.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

date_added	2009-06-03
description	Apache Tomcat 6.0.18 - Form Authentication Existing/Non-Existing 'Username' Enumeration
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`true`
source_date_published	2009-06-03
exploit_type	remote
platform	multiple
source_date_updated	2014-04-25
data_source	Exploit-DB
source_url	https://www.securityfocus.com/bid/35196/info

date_added	`null`
description	This module enumerates Apache Tomcat's usernames via malformed requests to j_security_check, which can be found in the web administration package. It should work against Tomcat servers 4.1.0 - 4.1.39, 5.5.0 - 5.5.27, and 6.0.0 - 6.0.18. Newer versions no longer have the "admin" package by default. The 'admin' package is no longer provided for Tomcat 6 and later versions.
required_action	`null`
due_date	`null`
notes	{}
known_ransomware_campaign_use	`false`
source_date_published	`null`
exploit_type	`null`
platform
source_date_updated	`null`
data_source	Metasploit
source_url	https://github.com/rapid7/metasploit-framework/tree/master/modules/auxiliary/scanner/http/tomcat_enum.rb

Severity_range_score 0.1 - 6.9

Exploitability 2.0

Weighted_severity 6.2

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4rcx-xfn5-7kdb

Vulnerability Instance