Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-wp9q-eurd-43dx

Summary

Jettison Out-of-bounds Write vulnerability
Jettison before v1.5.2 was discovered to contain a stack overflow via the map parameter. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted string.

Aliases

alias	CVE-2022-45693

alias	GHSA-grr4-wv38-f68w

Fixed_packages

url pkg:deb/debian/libjettison-java@1.5.3-1~deb11u1?distro=trixie

purl pkg:deb/debian/libjettison-java@1.5.3-1~deb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qq1f-3nsz-6kcz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.5.3-1~deb11u1%3Fdistro=trixie

url pkg:deb/debian/libjettison-java@1.5.3-1~deb11u1

purl pkg:deb/debian/libjettison-java@1.5.3-1~deb11u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qq1f-3nsz-6kcz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.5.3-1~deb11u1

url pkg:deb/debian/libjettison-java@1.5.3-1?distro=trixie

purl pkg:deb/debian/libjettison-java@1.5.3-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qq1f-3nsz-6kcz

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.5.3-1%3Fdistro=trixie

url	pkg:deb/debian/libjettison-java@1.5.4-1?distro=trixie
purl	pkg:deb/debian/libjettison-java@1.5.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.5.4-1%3Fdistro=trixie

url pkg:maven/org.codehaus.jettison/jettison@1.5.2

purl pkg:maven/org.codehaus.jettison/jettison@1.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qq1f-3nsz-6kcz

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.5.2

Affected_packages

url pkg:deb/debian/libjettison-java@1.0-1

purl pkg:deb/debian/libjettison-java@1.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.0-1

url pkg:deb/debian/libjettison-java@1.2-2

purl pkg:deb/debian/libjettison-java@1.2-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.2-2

url pkg:deb/debian/libjettison-java@1.2-3

purl pkg:deb/debian/libjettison-java@1.2-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.2-3

url pkg:deb/debian/libjettison-java@1.4.0-1

purl pkg:deb/debian/libjettison-java@1.4.0-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libjettison-java@1.4.0-1

url pkg:maven/org.codehaus.jettison/jettison@1.0-alpha-1

purl pkg:maven/org.codehaus.jettison/jettison@1.0-alpha-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.0-alpha-1

url pkg:maven/org.codehaus.jettison/jettison@1.0-beta-1

purl pkg:maven/org.codehaus.jettison/jettison@1.0-beta-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.0-beta-1

url pkg:maven/org.codehaus.jettison/jettison@1.0-RC1

purl pkg:maven/org.codehaus.jettison/jettison@1.0-RC1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.0-RC1

url pkg:maven/org.codehaus.jettison/jettison@1.0-RC2

purl pkg:maven/org.codehaus.jettison/jettison@1.0-RC2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.0-RC2

url pkg:maven/org.codehaus.jettison/jettison@1.0

purl pkg:maven/org.codehaus.jettison/jettison@1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.0

url pkg:maven/org.codehaus.jettison/jettison@1.0.1

purl pkg:maven/org.codehaus.jettison/jettison@1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.0.1

url pkg:maven/org.codehaus.jettison/jettison@1.1

purl pkg:maven/org.codehaus.jettison/jettison@1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.1

url pkg:maven/org.codehaus.jettison/jettison@1.2

purl pkg:maven/org.codehaus.jettison/jettison@1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.2

url pkg:maven/org.codehaus.jettison/jettison@1.3

purl pkg:maven/org.codehaus.jettison/jettison@1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3

url pkg:maven/org.codehaus.jettison/jettison@1.3.1

purl pkg:maven/org.codehaus.jettison/jettison@1.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.1

url pkg:maven/org.codehaus.jettison/jettison@1.3.2

purl pkg:maven/org.codehaus.jettison/jettison@1.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.2

url pkg:maven/org.codehaus.jettison/jettison@1.3.3

purl pkg:maven/org.codehaus.jettison/jettison@1.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.3

url pkg:maven/org.codehaus.jettison/jettison@1.3.4

purl pkg:maven/org.codehaus.jettison/jettison@1.3.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.4

url pkg:maven/org.codehaus.jettison/jettison@1.3.5

purl pkg:maven/org.codehaus.jettison/jettison@1.3.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.5

url pkg:maven/org.codehaus.jettison/jettison@1.3.6

purl pkg:maven/org.codehaus.jettison/jettison@1.3.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.6

url pkg:maven/org.codehaus.jettison/jettison@1.3.7

purl pkg:maven/org.codehaus.jettison/jettison@1.3.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.7

url pkg:maven/org.codehaus.jettison/jettison@1.3.8

purl pkg:maven/org.codehaus.jettison/jettison@1.3.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.3.8

url pkg:maven/org.codehaus.jettison/jettison@1.4.0

purl pkg:maven/org.codehaus.jettison/jettison@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.4.0

url pkg:maven/org.codehaus.jettison/jettison@1.4.1

purl pkg:maven/org.codehaus.jettison/jettison@1.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.4.1

url pkg:maven/org.codehaus.jettison/jettison@1.5.0

purl pkg:maven/org.codehaus.jettison/jettison@1.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.5.0

url pkg:maven/org.codehaus.jettison/jettison@1.5.1

purl pkg:maven/org.codehaus.jettison/jettison@1.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-qq1f-3nsz-6kcz

vulnerability	VCID-u32c-7463-fkff

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.codehaus.jettison/jettison@1.5.1

url pkg:rpm/redhat/eap7-apache-cxf@3.1.16-4.redhat_00003.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-apache-cxf@3.1.16-4.redhat_00003.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xzs8-rbhd-mkbp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-apache-cxf@3.1.16-4.redhat_00003.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-jackson-databind@2.8.11.6-2.SP1_redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-jackson-databind@2.8.11.6-2.SP1_redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5qfd-jjh1-d3fx

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-bydt-bkf4-rbh2

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jvp6-892x-nkc7

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-ruae-hqdg-m7ek

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-wdgx-34uc-2qa4

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xnyb-nuwm-pkdr

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-databind@2.8.11.6-2.SP1_redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00004.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00004.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-9bk7-2rsc-nbd6

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jstt-6zs3-ybew

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xzs8-rbhd-mkbp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jackson-modules-java8@2.10.4-2.redhat_00004.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jettison@1.3.8-2.redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-jettison@1.3.8-2.redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jettison@1.3.8-2.redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1?arch=el8eap

purl pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1?arch=el9eap

purl pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jettison@1.5.2-1.redhat_00002.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-jettison@1.5.2-2.redhat_00002.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jettison@1.5.2-2.redhat_00002.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-9bk7-2rsc-nbd6

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jstt-6zs3-ybew

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xzs8-rbhd-mkbp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jettison@1.5.2-2.redhat_00002.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-netty@4.1.63-1.Final_redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-netty@4.1.63-1.Final_redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-netty@4.1.63-1.Final_redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-resteasy@3.0.27-1.Final_redhat_00001.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-resteasy@3.0.27-1.Final_redhat_00001.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5qfd-jjh1-d3fx

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-9bk7-2rsc-nbd6

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-bydt-bkf4-rbh2

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jvp6-892x-nkc7

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-q6t7-9mjk-7fdd

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-ruae-hqdg-m7ek

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-wdgx-34uc-2qa4

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xnyb-nuwm-pkdr

vulnerability	VCID-xzs8-rbhd-mkbp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-resteasy@3.0.27-1.Final_redhat_00001.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-resteasy@3.11.6-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-resteasy@3.11.6-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-9bk7-2rsc-nbd6

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jstt-6zs3-ybew

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xzs8-rbhd-mkbp

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-resteasy@3.11.6-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-snakeyaml@1.33.0-1.SP1_redhat_00001.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-snakeyaml@1.33.0-1.SP1_redhat_00001.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-snakeyaml@1.33.0-1.SP1_redhat_00001.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-velocity@1.7.0-3.redhat_00006.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-velocity@1.7.0-3.redhat_00006.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-9bk7-2rsc-nbd6

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-velocity@1.7.0-3.redhat_00006.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-wildfly@7.1.9-2.GA_redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-wildfly@7.1.9-2.GA_redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-8977-tjss-w7ba

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-jwav-88m7-6fhz

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-q6t7-9mjk-7fdd

vulnerability	VCID-qruf-r6dc-3ugj

vulnerability	VCID-wp9q-eurd-43dx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.1.9-2.GA_redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/jenkins-2-plugins@4.12.1686649756-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.12.1686649756-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4qvq-xv22-xbed

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-7k5m-ys11-mfby

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-v9jp-s75d-zffs

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xq5k-dyk9-u3ct

vulnerability	VCID-yph7-zq7p-j3hz

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.12.1686649756-1%3Farch=el8

url pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el7sso

purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el7sso

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2xyb-g3n4-n3ca

vulnerability	VCID-3s9f-prpy-hbcx

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-4v1f-kt5y-w7d1

vulnerability	VCID-5618-53yg-8qh4

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-7j7q-m1zp-zfac

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-cvxp-ctj9-guej

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-dxj3-8sk5-mfdy

vulnerability	VCID-ebn8-cjqs-k3ad

vulnerability	VCID-gp47-t3vm-57an

vulnerability	VCID-hbwg-ebvx-k7e1

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-ptd4-8f7f-hyg6

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-vfsr-kypp-wbea

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xy58-u3se-wfdb

vulnerability	VCID-xzs8-rbhd-mkbp

vulnerability	VCID-y1np-kma2-ayfn

vulnerability	VCID-y3ey-aab7-q3fk

vulnerability	VCID-y8up-mkx2-abcn

vulnerability	VCID-y9aa-2a31-ufa7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1%3Farch=el7sso

url pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el9sso

purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el9sso

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2xyb-g3n4-n3ca

vulnerability	VCID-3s9f-prpy-hbcx

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-4v1f-kt5y-w7d1

vulnerability	VCID-5618-53yg-8qh4

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-7j7q-m1zp-zfac

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-cvxp-ctj9-guej

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-dxj3-8sk5-mfdy

vulnerability	VCID-ebn8-cjqs-k3ad

vulnerability	VCID-gp47-t3vm-57an

vulnerability	VCID-hbwg-ebvx-k7e1

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-ptd4-8f7f-hyg6

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-vfsr-kypp-wbea

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xy58-u3se-wfdb

vulnerability	VCID-xzs8-rbhd-mkbp

vulnerability	VCID-y1np-kma2-ayfn

vulnerability	VCID-y3ey-aab7-q3fk

vulnerability	VCID-y8up-mkx2-abcn

vulnerability	VCID-y9aa-2a31-ufa7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1%3Farch=el9sso

url pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el8sso

purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el8sso

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2xyb-g3n4-n3ca

vulnerability	VCID-3s9f-prpy-hbcx

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-4v1f-kt5y-w7d1

vulnerability	VCID-5618-53yg-8qh4

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-7j7q-m1zp-zfac

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-cvxp-ctj9-guej

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-dxj3-8sk5-mfdy

vulnerability	VCID-ebn8-cjqs-k3ad

vulnerability	VCID-gp47-t3vm-57an

vulnerability	VCID-hbwg-ebvx-k7e1

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-ptd4-8f7f-hyg6

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-vfsr-kypp-wbea

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xy58-u3se-wfdb

vulnerability	VCID-xzs8-rbhd-mkbp

vulnerability	VCID-y1np-kma2-ayfn

vulnerability	VCID-y3ey-aab7-q3fk

vulnerability	VCID-y8up-mkx2-abcn

vulnerability	VCID-y9aa-2a31-ufa7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1%3Farch=el8sso

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45693.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45693.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-45693

reference_id

reference_type

scores

value	0.00131
scoring_system	epss
scoring_elements	0.32579
published_at	2026-04-13T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32607
published_at	2026-04-12T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32645
published_at	2026-04-11T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32642
published_at	2026-04-09T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32748
published_at	2026-04-04T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32713
published_at	2026-04-02T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32617
published_at	2026-04-08T12:55:00Z

value	0.00131
scoring_system	epss
scoring_elements	0.32569
published_at	2026-04-07T12:55:00Z

value	0.00139
scoring_system	epss
scoring_elements	0.3412
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-45693

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40149
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40149

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40150
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40150

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45685
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45685

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45693
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45693

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/jettison-json/jettison

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/jettison-json/jettison

reference_url

https://github.com/jettison-json/jettison/issues/52

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-22T14:58:02Z/

url

https://github.com/jettison-json/jettison/issues/52

reference_url

https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-22T14:58:02Z/

url

https://lists.debian.org/debian-lts-announce/2022/12/msg00045.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-45693

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-45693

reference_url

https://www.debian.org/security/2023/dsa-5312

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-22T14:58:02Z/

url

https://www.debian.org/security/2023/dsa-5312

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2155970
reference_id	2155970
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2155970

reference_url

https://github.com/advisories/GHSA-grr4-wv38-f68w

reference_id

GHSA-grr4-wv38-f68w

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-grr4-wv38-f68w

reference_url	https://access.redhat.com/errata/RHSA-2023:0544
reference_id	RHSA-2023:0544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0544

reference_url	https://access.redhat.com/errata/RHSA-2023:0552
reference_id	RHSA-2023:0552
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0552

reference_url	https://access.redhat.com/errata/RHSA-2023:0553
reference_id	RHSA-2023:0553
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0553

reference_url	https://access.redhat.com/errata/RHSA-2023:0554
reference_id	RHSA-2023:0554
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0554

reference_url	https://access.redhat.com/errata/RHSA-2023:0556
reference_id	RHSA-2023:0556
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0556

reference_url	https://access.redhat.com/errata/RHSA-2023:3610
reference_id	RHSA-2023:3610
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3610

reference_url	https://access.redhat.com/errata/RHSA-2024:1027
reference_id	RHSA-2024:1027
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1027

reference_url	https://access.redhat.com/errata/RHSA-2025:1746
reference_id	RHSA-2025:1746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1746

reference_url	https://access.redhat.com/errata/RHSA-2025:1747
reference_id	RHSA-2025:1747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1747

reference_url	https://usn.ubuntu.com/6177-1/
reference_id	USN-6177-1
reference_type
scores
url	https://usn.ubuntu.com/6177-1/

Weaknesses

cwe_id	787
name	Out-of-bounds Write
description	The product writes data past the end, or before the beginning, of the intended buffer.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 6.2 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wp9q-eurd-43dx

Vulnerability Instance