Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-mm3e-4pej-byed

Summary

Uncontrolled Resource Consumption in snakeyaml
The package org.yaml:snakeyaml from 0 and before 1.31 are vulnerable to Denial of Service (DoS) due missing to nested depth limitation for collections.

Aliases

alias	CVE-2022-25857

alias	GHSA-3mc7-4q67-w48m

Fixed_packages

url	pkg:deb/debian/snakeyaml@1.28-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/snakeyaml@1.28-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.28-1%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/snakeyaml@1.28-1%2Bdeb11u2?distro=trixie

purl pkg:deb/debian/snakeyaml@1.28-1%2Bdeb11u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.28-1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/snakeyaml@1.28-1%2Bdeb11u2

purl pkg:deb/debian/snakeyaml@1.28-1%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.28-1%252Bdeb11u2

url	pkg:deb/debian/snakeyaml@1.31-1?distro=trixie
purl	pkg:deb/debian/snakeyaml@1.31-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.31-1%3Fdistro=trixie

url	pkg:deb/debian/snakeyaml@1.33-2?distro=trixie
purl	pkg:deb/debian/snakeyaml@1.33-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.33-2%3Fdistro=trixie

url	pkg:deb/debian/snakeyaml@2.0%2Bds%2Breally1.33-1?distro=trixie
purl	pkg:deb/debian/snakeyaml@2.0%2Bds%2Breally1.33-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@2.0%252Bds%252Breally1.33-1%3Fdistro=trixie

url	pkg:deb/debian/snakeyaml@2.5%2Bds-1?distro=trixie
purl	pkg:deb/debian/snakeyaml@2.5%2Bds-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@2.5%252Bds-1%3Fdistro=trixie

url pkg:maven/org.yaml/snakeyaml@1.31

purl pkg:maven/org.yaml/snakeyaml@1.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.31

Affected_packages

url pkg:deb/debian/snakeyaml@1.12-2

purl pkg:deb/debian/snakeyaml@1.12-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.12-2

url pkg:deb/debian/snakeyaml@1.17-1

purl pkg:deb/debian/snakeyaml@1.17-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.17-1

url pkg:deb/debian/snakeyaml@1.23-1

purl pkg:deb/debian/snakeyaml@1.23-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/snakeyaml@1.23-1

url pkg:maven/org.yaml/snakeyaml@1.4

purl pkg:maven/org.yaml/snakeyaml@1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.4

url pkg:maven/org.yaml/snakeyaml@1.5

purl pkg:maven/org.yaml/snakeyaml@1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.5

url pkg:maven/org.yaml/snakeyaml@1.6

purl pkg:maven/org.yaml/snakeyaml@1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.6

url pkg:maven/org.yaml/snakeyaml@1.7

purl pkg:maven/org.yaml/snakeyaml@1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.7

url pkg:maven/org.yaml/snakeyaml@1.8

purl pkg:maven/org.yaml/snakeyaml@1.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.8

url pkg:maven/org.yaml/snakeyaml@1.9

purl pkg:maven/org.yaml/snakeyaml@1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.9

url pkg:maven/org.yaml/snakeyaml@1.10

purl pkg:maven/org.yaml/snakeyaml@1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.10

url pkg:maven/org.yaml/snakeyaml@1.11

purl pkg:maven/org.yaml/snakeyaml@1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.11

url pkg:maven/org.yaml/snakeyaml@1.12

purl pkg:maven/org.yaml/snakeyaml@1.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.12

url pkg:maven/org.yaml/snakeyaml@1.13

purl pkg:maven/org.yaml/snakeyaml@1.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.13

url pkg:maven/org.yaml/snakeyaml@1.14

purl pkg:maven/org.yaml/snakeyaml@1.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.14

url pkg:maven/org.yaml/snakeyaml@1.15

purl pkg:maven/org.yaml/snakeyaml@1.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.15

url pkg:maven/org.yaml/snakeyaml@1.16

purl pkg:maven/org.yaml/snakeyaml@1.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.16

url pkg:maven/org.yaml/snakeyaml@1.17

purl pkg:maven/org.yaml/snakeyaml@1.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.17

url pkg:maven/org.yaml/snakeyaml@1.18

purl pkg:maven/org.yaml/snakeyaml@1.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.18

url pkg:maven/org.yaml/snakeyaml@1.19

purl pkg:maven/org.yaml/snakeyaml@1.19

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.19

url pkg:maven/org.yaml/snakeyaml@1.20

purl pkg:maven/org.yaml/snakeyaml@1.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.20

url pkg:maven/org.yaml/snakeyaml@1.21

purl pkg:maven/org.yaml/snakeyaml@1.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.21

url pkg:maven/org.yaml/snakeyaml@1.22

purl pkg:maven/org.yaml/snakeyaml@1.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.22

url pkg:maven/org.yaml/snakeyaml@1.23

purl pkg:maven/org.yaml/snakeyaml@1.23

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.23

url pkg:maven/org.yaml/snakeyaml@1.24

purl pkg:maven/org.yaml/snakeyaml@1.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.24

url pkg:maven/org.yaml/snakeyaml@1.25

purl pkg:maven/org.yaml/snakeyaml@1.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-e8hu-czv4-yyc5

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.25

url pkg:maven/org.yaml/snakeyaml@1.26

purl pkg:maven/org.yaml/snakeyaml@1.26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.26

url pkg:maven/org.yaml/snakeyaml@1.27

purl pkg:maven/org.yaml/snakeyaml@1.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.27

url pkg:maven/org.yaml/snakeyaml@1.28

purl pkg:maven/org.yaml/snakeyaml@1.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.28

url pkg:maven/org.yaml/snakeyaml@1.29

purl pkg:maven/org.yaml/snakeyaml@1.29

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.29

url pkg:maven/org.yaml/snakeyaml@1.30

purl pkg:maven/org.yaml/snakeyaml@1.30

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqsn-ygsg-yfdu

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.yaml/snakeyaml@1.30

url pkg:rpm/redhat/candlepin@4.2.13-1?arch=el8sat

purl pkg:rpm/redhat/candlepin@4.2.13-1?arch=el8sat

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2cup-9gdn-yyhk

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fb8u-g65k-hffs

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-mbst-3bec-ykcq

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-qub7-qp14-uqcg

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-v2pq-1qhm-4qb9

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/candlepin@4.2.13-1%3Farch=el8sat

url pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@1.5.5.016-1.redhat_00001.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-activemq-artemis@2.9.0-10.redhat_00021.1?arch=el7eap

purl pkg:rpm/redhat/eap7-activemq-artemis@2.9.0-10.redhat_00021.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-activemq-artemis@2.9.0-10.redhat_00021.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-artemis-native@1:1.5.5.016-1.redhat_00001.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-gson@2.8.9-1.redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-gson@2.8.9-1.redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-gson@2.8.9-1.redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-hal-console@3.2.18-1.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-hal-console@3.2.18-1.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hal-console@3.2.18-1.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-14.Final_redhat_00015.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-14.Final_redhat_00015.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-server-migration@1.7.2-14.Final_redhat_00015.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-xnio-base@3.5.11-1.Final_redhat_00001.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-jboss-xnio-base@3.7.14-3.Final_redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-jboss-xnio-base@3.7.14-3.Final_redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jboss-xnio-base@3.7.14-3.Final_redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-jsoup@1.14.2-1.redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1?arch=el8eap

purl pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1?arch=el8eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mm3e-4pej-byed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1%3Farch=el8eap

url pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mm3e-4pej-byed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1?arch=el9eap

purl pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1?arch=el9eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mm3e-4pej-byed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-snakeyaml@1.31.0-1.redhat_00001.1%3Farch=el9eap

url pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-undertow@1.4.18-14.SP13_redhat_00001.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.1.10-2.GA_redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-wildfly@7.3.13-4.GA_redhat_00002.1?arch=el7eap

purl pkg:rpm/redhat/eap7-wildfly@7.3.13-4.GA_redhat_00002.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly@7.3.13-4.GA_redhat_00002.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-woodstox-core@5.0.3-2.redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/eap7-woodstox-core@6.4.0-1.redhat_00001.1?arch=el7eap

purl pkg:rpm/redhat/eap7-woodstox-core@6.4.0-1.redhat_00001.1?arch=el7eap

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-woodstox-core@6.4.0-1.redhat_00001.1%3Farch=el7eap

url pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7?arch=el7

purl pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-14ff-vn3t-vyhy

vulnerability	VCID-1vrj-chs2-d3ab

vulnerability	VCID-469b-j213-6ufk

vulnerability	VCID-46y3-rx34-pyc6

vulnerability	VCID-4rxk-nhwr-ffad

vulnerability	VCID-7yc7-e35f-8uhj

vulnerability	VCID-93ut-2de3-ckc5

vulnerability	VCID-cf5j-2dz8-7bbu

vulnerability	VCID-e3vc-jpft-gye7

vulnerability	VCID-hqzr-vc5w-9ff5

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-nfjb-tkzv-fudg

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-usz2-tufg-k7gz

vulnerability	VCID-xftw-raz7-b7e1

vulnerability	VCID-zy5r-wxv8-g3e8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-xml-security@2.0.10-2.redhat_00002.1.ep7%3Farch=el7

url pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13zs-2sn8-3yey

vulnerability	VCID-1tha-u7dt-tfc9

vulnerability	VCID-2zhb-qfhq-xkdp

vulnerability	VCID-4qvq-xv22-xbed

vulnerability	VCID-5jjh-qcnz-mye7

vulnerability	VCID-73th-g3mx-dqf1

vulnerability	VCID-892e-957y-4yc8

vulnerability	VCID-9h4k-xjx5-afc8

vulnerability	VCID-atqg-nfz6-zyfs

vulnerability	VCID-ca7m-fb38-kfe2

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-fzvq-dpvh-v7eu

vulnerability	VCID-gxu6-51zm-sfh7

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-n5vc-ggjg-kfc1

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-pnge-tumu-v7e2

vulnerability	VCID-pwtj-az3g-zka3

vulnerability	VCID-rs56-6qvx-vucg

vulnerability	VCID-rxtr-936k-h3cc

vulnerability	VCID-s839-rpta-6bej

vulnerability	VCID-tx8n-nmhx-gqg1

vulnerability	VCID-ubq1-gzr6-x3fu

vulnerability	VCID-xq5k-dyk9-u3ct

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.9.1675668922-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13zs-2sn8-3yey

vulnerability	VCID-1tha-u7dt-tfc9

vulnerability	VCID-2zhb-qfhq-xkdp

vulnerability	VCID-4qvq-xv22-xbed

vulnerability	VCID-5jjh-qcnz-mye7

vulnerability	VCID-73th-g3mx-dqf1

vulnerability	VCID-892e-957y-4yc8

vulnerability	VCID-9h4k-xjx5-afc8

vulnerability	VCID-atqg-nfz6-zyfs

vulnerability	VCID-ca7m-fb38-kfe2

vulnerability	VCID-fzvq-dpvh-v7eu

vulnerability	VCID-gxu6-51zm-sfh7

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-n5vc-ggjg-kfc1

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-pnge-tumu-v7e2

vulnerability	VCID-pwtj-az3g-zka3

vulnerability	VCID-rs56-6qvx-vucg

vulnerability	VCID-rxtr-936k-h3cc

vulnerability	VCID-s839-rpta-6bej

vulnerability	VCID-tx8n-nmhx-gqg1

vulnerability	VCID-ubq1-gzr6-x3fu

vulnerability	VCID-xq5k-dyk9-u3ct

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.10.1675144701-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1tha-u7dt-tfc9

vulnerability	VCID-2zhb-qfhq-xkdp

vulnerability	VCID-4qvq-xv22-xbed

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-73th-g3mx-dqf1

vulnerability	VCID-atqg-nfz6-zyfs

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-m3g5-ua28-afd2

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-n5vc-ggjg-kfc1

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-pnge-tumu-v7e2

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-rxtr-936k-h3cc

vulnerability	VCID-s839-rpta-6bej

vulnerability	VCID-tx8n-nmhx-gqg1

vulnerability	VCID-xq5k-dyk9-u3ct

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.11.1683009941-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.12.1698294000-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.12.1698294000-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-h7qt-3g1f-5ffr

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-pwtj-az3g-zka3

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.12.1698294000-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.12.1706515741-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.12.1706515741-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-17sn-57uv-gkg3

vulnerability	VCID-2a3h-6wad-63gc

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-a1eu-yahc-ffgr

vulnerability	VCID-fnpa-1sqy-u7hw

vulnerability	VCID-h9yg-u3jh-mbfq

vulnerability	VCID-j456-xdn6-xyej

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-m3g5-ua28-afd2

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-pwtj-az3g-zka3

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.12.1706515741-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.13.1698292274-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.13.1698292274-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-h7qt-3g1f-5ffr

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.13.1698292274-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.13.1706516346-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.13.1706516346-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-955x-hg4a-5kc3

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-m3g5-ua28-afd2

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.13.1706516346-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.14.1699356715-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.14.1699356715-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5781-s1ny-q7ey

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-h7qt-3g1f-5ffr

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.14.1699356715-1%3Farch=el8

url pkg:rpm/redhat/jenkins-2-plugins@4.14.1706516441-1?arch=el8

purl pkg:rpm/redhat/jenkins-2-plugins@4.14.1706516441-1?arch=el8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-17sn-57uv-gkg3

vulnerability	VCID-19j2-jvgt-mkg6

vulnerability	VCID-2a3h-6wad-63gc

vulnerability	VCID-5bu5-5b6n-nuft

vulnerability	VCID-955x-hg4a-5kc3

vulnerability	VCID-a1eu-yahc-ffgr

vulnerability	VCID-fnpa-1sqy-u7hw

vulnerability	VCID-h9yg-u3jh-mbfq

vulnerability	VCID-j456-xdn6-xyej

vulnerability	VCID-j584-bgww-z7fw

vulnerability	VCID-j986-mtma-b3bw

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-quvj-3tpk-qug1

vulnerability	VCID-w8yc-azv8-yuh1

vulnerability	VCID-zxcj-h6nx-m7gq

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins-2-plugins@4.14.1706516441-1%3Farch=el8

url pkg:rpm/redhat/prometheus-jmx-exporter@0.12.0-8?arch=el8_6

purl pkg:rpm/redhat/prometheus-jmx-exporter@0.12.0-8?arch=el8_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-mm3e-4pej-byed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/prometheus-jmx-exporter@0.12.0-8%3Farch=el8_6

url pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el7sso

purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el7sso

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2xyb-g3n4-n3ca

vulnerability	VCID-3s9f-prpy-hbcx

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-4v1f-kt5y-w7d1

vulnerability	VCID-5618-53yg-8qh4

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-7j7q-m1zp-zfac

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-cvxp-ctj9-guej

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-dxj3-8sk5-mfdy

vulnerability	VCID-ebn8-cjqs-k3ad

vulnerability	VCID-gp47-t3vm-57an

vulnerability	VCID-hbwg-ebvx-k7e1

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-ptd4-8f7f-hyg6

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-vfsr-kypp-wbea

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xy58-u3se-wfdb

vulnerability	VCID-xzs8-rbhd-mkbp

vulnerability	VCID-y1np-kma2-ayfn

vulnerability	VCID-y3ey-aab7-q3fk

vulnerability	VCID-y8up-mkx2-abcn

vulnerability	VCID-y9aa-2a31-ufa7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1%3Farch=el7sso

url pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el9sso

purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el9sso

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2xyb-g3n4-n3ca

vulnerability	VCID-3s9f-prpy-hbcx

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-4v1f-kt5y-w7d1

vulnerability	VCID-5618-53yg-8qh4

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-7j7q-m1zp-zfac

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-cvxp-ctj9-guej

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-dxj3-8sk5-mfdy

vulnerability	VCID-ebn8-cjqs-k3ad

vulnerability	VCID-gp47-t3vm-57an

vulnerability	VCID-hbwg-ebvx-k7e1

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-ptd4-8f7f-hyg6

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-vfsr-kypp-wbea

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xy58-u3se-wfdb

vulnerability	VCID-xzs8-rbhd-mkbp

vulnerability	VCID-y1np-kma2-ayfn

vulnerability	VCID-y3ey-aab7-q3fk

vulnerability	VCID-y8up-mkx2-abcn

vulnerability	VCID-y9aa-2a31-ufa7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1%3Farch=el9sso

url pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el8sso

purl pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1?arch=el8sso

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2xyb-g3n4-n3ca

vulnerability	VCID-3s9f-prpy-hbcx

vulnerability	VCID-4nu3-fknt-puej

vulnerability	VCID-4v1f-kt5y-w7d1

vulnerability	VCID-5618-53yg-8qh4

vulnerability	VCID-6354-p39b-zbhp

vulnerability	VCID-7j7q-m1zp-zfac

vulnerability	VCID-9h46-72hw-bkcr

vulnerability	VCID-cvxp-ctj9-guej

vulnerability	VCID-dmkc-42vj-gbhc

vulnerability	VCID-dxj3-8sk5-mfdy

vulnerability	VCID-ebn8-cjqs-k3ad

vulnerability	VCID-gp47-t3vm-57an

vulnerability	VCID-hbwg-ebvx-k7e1

vulnerability	VCID-kexn-gjxj-uudm

vulnerability	VCID-mm3e-4pej-byed

vulnerability	VCID-myp4-24sf-9yfv

vulnerability	VCID-netd-rr9e-wbg5

vulnerability	VCID-ptd4-8f7f-hyg6

vulnerability	VCID-qxfs-sq38-jfad

vulnerability	VCID-sqx4-euc2-myew

vulnerability	VCID-turp-dju7-c7fx

vulnerability	VCID-v2pq-1qhm-4qb9

vulnerability	VCID-vfsr-kypp-wbea

vulnerability	VCID-wp9q-eurd-43dx

vulnerability	VCID-xy58-u3se-wfdb

vulnerability	VCID-xzs8-rbhd-mkbp

vulnerability	VCID-y1np-kma2-ayfn

vulnerability	VCID-y3ey-aab7-q3fk

vulnerability	VCID-y8up-mkx2-abcn

vulnerability	VCID-y9aa-2a31-ufa7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.6-1.redhat_00001.1%3Farch=el8sso

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25857.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-25857.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-25857

reference_id

reference_type

scores

value	0.00869
scoring_system	epss
scoring_elements	0.7521
published_at	2026-04-16T12:55:00Z

value	0.00869
scoring_system	epss
scoring_elements	0.75162
published_at	2026-04-04T12:55:00Z

value	0.00869
scoring_system	epss
scoring_elements	0.75207
published_at	2026-04-11T12:55:00Z

value	0.00869
scoring_system	epss
scoring_elements	0.75185
published_at	2026-04-12T12:55:00Z

value	0.00869
scoring_system	epss
scoring_elements	0.75173
published_at	2026-04-13T12:55:00Z

value	0.00869
scoring_system	epss
scoring_elements	0.75139
published_at	2026-04-07T12:55:00Z

value	0.00869
scoring_system	epss
scoring_elements	0.75132
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-25857

reference_url

https://bitbucket.org/snakeyaml/snakeyaml/commits/fc300780da21f4bb92c148bc90257201220cf174

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://bitbucket.org/snakeyaml/snakeyaml/commits/fc300780da21f4bb92c148bc90257201220cf174

reference_url

https://bitbucket.org/snakeyaml/snakeyaml/issues/525

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://bitbucket.org/snakeyaml/snakeyaml/issues/525

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25857
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25857

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/jruby/jruby/issues/7342

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements

url

https://github.com/jruby/jruby/issues/7342

reference_url

https://github.com/snakeyaml/snakeyaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/snakeyaml/snakeyaml

reference_url

https://github.com/snakeyaml/snakeyaml/commit/fc300780da21f4bb92c148bc90257201220cf174

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/snakeyaml/snakeyaml/commit/fc300780da21f4bb92c148bc90257201220cf174

reference_url

https://lists.debian.org/debian-lts-announce/2022/10/msg00001.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2022/10/msg00001.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-25857

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-25857

reference_url

https://security.netapp.com/advisory/ntap-20240315-0010

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20240315-0010

reference_url

https://security.snyk.io/vuln/SNYK-JAVA-ORGYAML-2806360

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.snyk.io/vuln/SNYK-JAVA-ORGYAML-2806360

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019218
reference_id	1019218
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1019218

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2126789
reference_id	2126789
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2126789

reference_url

https://github.com/advisories/GHSA-3mc7-4q67-w48m

reference_id

GHSA-3mc7-4q67-w48m

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-3mc7-4q67-w48m

reference_url	https://access.redhat.com/errata/RHSA-2022:6757
reference_id	RHSA-2022:6757
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6757

reference_url	https://access.redhat.com/errata/RHSA-2022:6820
reference_id	RHSA-2022:6820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6820

reference_url	https://access.redhat.com/errata/RHSA-2022:6821
reference_id	RHSA-2022:6821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6821

reference_url	https://access.redhat.com/errata/RHSA-2022:6822
reference_id	RHSA-2022:6822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6822

reference_url	https://access.redhat.com/errata/RHSA-2022:6823
reference_id	RHSA-2022:6823
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6823

reference_url	https://access.redhat.com/errata/RHSA-2022:6825
reference_id	RHSA-2022:6825
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6825

reference_url	https://access.redhat.com/errata/RHSA-2022:6835
reference_id	RHSA-2022:6835
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6835

reference_url	https://access.redhat.com/errata/RHSA-2022:6941
reference_id	RHSA-2022:6941
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6941

reference_url	https://access.redhat.com/errata/RHSA-2022:8524
reference_id	RHSA-2022:8524
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8524

reference_url	https://access.redhat.com/errata/RHSA-2022:8652
reference_id	RHSA-2022:8652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8652

reference_url	https://access.redhat.com/errata/RHSA-2022:8876
reference_id	RHSA-2022:8876
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8876

reference_url	https://access.redhat.com/errata/RHSA-2023:0560
reference_id	RHSA-2023:0560
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0560

reference_url	https://access.redhat.com/errata/RHSA-2023:0777
reference_id	RHSA-2023:0777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0777

reference_url	https://access.redhat.com/errata/RHSA-2023:2097
reference_id	RHSA-2023:2097
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2097

reference_url	https://access.redhat.com/errata/RHSA-2023:2100
reference_id	RHSA-2023:2100
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2100

reference_url	https://access.redhat.com/errata/RHSA-2023:3198
reference_id	RHSA-2023:3198
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3198

reference_url	https://access.redhat.com/errata/RHSA-2023:3641
reference_id	RHSA-2023:3641
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3641

reference_url	https://access.redhat.com/errata/RHSA-2023:4983
reference_id	RHSA-2023:4983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4983

reference_url	https://access.redhat.com/errata/RHSA-2023:6172
reference_id	RHSA-2023:6172
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6172

reference_url	https://access.redhat.com/errata/RHSA-2023:6179
reference_id	RHSA-2023:6179
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6179

reference_url	https://access.redhat.com/errata/RHSA-2023:7288
reference_id	RHSA-2023:7288
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7288

reference_url	https://access.redhat.com/errata/RHSA-2023:7697
reference_id	RHSA-2023:7697
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7697

reference_url	https://access.redhat.com/errata/RHSA-2024:0776
reference_id	RHSA-2024:0776
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0776

reference_url	https://access.redhat.com/errata/RHSA-2024:0777
reference_id	RHSA-2024:0777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0777

reference_url	https://access.redhat.com/errata/RHSA-2024:0778
reference_id	RHSA-2024:0778
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0778

reference_url	https://access.redhat.com/errata/RHSA-2025:4437
reference_id	RHSA-2025:4437
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4437

reference_url	https://usn.ubuntu.com/5944-1/
reference_id	USN-5944-1
reference_type
scores
url	https://usn.ubuntu.com/5944-1/

Weaknesses

cwe_id	400
name	Uncontrolled Resource Consumption
description	The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

cwe_id	776
name	Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')
description	The product uses XML documents and allows their structure to be defined with a Document Type Definition (DTD), but it does not properly control the number of recursive definitions of entities.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 6.2 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mm3e-4pej-byed

Vulnerability Instance