Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-yk3z-5fjt-q7gb

Summary

Prototype Pollution in hoek
Versions of `hoek` prior to 4.2.1 and 5.0.3 are vulnerable to prototype pollution.

The `merge` function, and the `applyToDefaults` and `applyToDefaultsWithShallow` functions which leverage `merge` behind the scenes, are vulnerable to a prototype pollution attack when provided an _unvalidated_ payload created from a JSON string containing the `__proto__` property.

This can be demonstrated like so:

```javascript
var Hoek = require('hoek');
var malicious_payload = '{"__proto__":{"oops":"It works !"}}';

var a = {};
console.log("Before : " + a.oops);
Hoek.merge({}, JSON.parse(malicious_payload));
console.log("After : " + a.oops);
```

This type of attack can be used to overwrite existing properties causing a potential denial of service.

Aliases

alias	CVE-2018-3728

alias	GHSA-jp4x-w63m-7wgm

Fixed_packages

url	pkg:deb/debian/node-hoek@5.0.3-1?distro=trixie
purl	pkg:deb/debian/node-hoek@5.0.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-hoek@5.0.3-1%3Fdistro=trixie

url	pkg:deb/debian/node-hoek@9.1.0%2B~cs10.1.0-1?distro=trixie
purl	pkg:deb/debian/node-hoek@9.1.0%2B~cs10.1.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-hoek@9.1.0%252B~cs10.1.0-1%3Fdistro=trixie

url	pkg:deb/debian/node-hoek@10.0.1%2B~cs12.0.0-1?distro=trixie
purl	pkg:deb/debian/node-hoek@10.0.1%2B~cs12.0.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-hoek@10.0.1%252B~cs12.0.0-1%3Fdistro=trixie

url	pkg:deb/debian/node-hoek@11.0.7%2B~cs12.0.2-1?distro=trixie
purl	pkg:deb/debian/node-hoek@11.0.7%2B~cs12.0.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/node-hoek@11.0.7%252B~cs12.0.2-1%3Fdistro=trixie

url pkg:npm/hoek@4.2.1

purl pkg:npm/hoek@4.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.2.1

url pkg:npm/hoek@5.0.3

purl pkg:npm/hoek@5.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@5.0.3

Affected_packages

url pkg:npm/hoek@0.0.1

purl pkg:npm/hoek@0.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.1

url pkg:npm/hoek@0.0.2

purl pkg:npm/hoek@0.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.2

url pkg:npm/hoek@0.0.3

purl pkg:npm/hoek@0.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.3

url pkg:npm/hoek@0.0.4

purl pkg:npm/hoek@0.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.4

url pkg:npm/hoek@0.0.5

purl pkg:npm/hoek@0.0.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.5

url pkg:npm/hoek@0.0.6

purl pkg:npm/hoek@0.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.6

url pkg:npm/hoek@0.0.7

purl pkg:npm/hoek@0.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.7

url pkg:npm/hoek@0.0.8

purl pkg:npm/hoek@0.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.8

url pkg:npm/hoek@0.0.9

purl pkg:npm/hoek@0.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.9

url pkg:npm/hoek@0.0.10

purl pkg:npm/hoek@0.0.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.10

url pkg:npm/hoek@0.0.11

purl pkg:npm/hoek@0.0.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.11

url pkg:npm/hoek@0.0.12

purl pkg:npm/hoek@0.0.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.12

url pkg:npm/hoek@0.0.13

purl pkg:npm/hoek@0.0.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.13

url pkg:npm/hoek@0.0.14

purl pkg:npm/hoek@0.0.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.14

url pkg:npm/hoek@0.0.15

purl pkg:npm/hoek@0.0.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.15

url pkg:npm/hoek@0.0.16

purl pkg:npm/hoek@0.0.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.16

url pkg:npm/hoek@0.0.17

purl pkg:npm/hoek@0.0.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.17

url pkg:npm/hoek@0.0.18

purl pkg:npm/hoek@0.0.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.18

url pkg:npm/hoek@0.0.19

purl pkg:npm/hoek@0.0.19

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.19

url pkg:npm/hoek@0.0.21

purl pkg:npm/hoek@0.0.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.0.21

url pkg:npm/hoek@0.1.0

purl pkg:npm/hoek@0.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.1.0

url pkg:npm/hoek@0.2.0

purl pkg:npm/hoek@0.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.2.0

url pkg:npm/hoek@0.3.0

purl pkg:npm/hoek@0.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.3.0

url pkg:npm/hoek@0.4.0

purl pkg:npm/hoek@0.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.4.0

url pkg:npm/hoek@0.4.1

purl pkg:npm/hoek@0.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.4.1

url pkg:npm/hoek@0.4.2

purl pkg:npm/hoek@0.4.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.4.2

url pkg:npm/hoek@0.4.3

purl pkg:npm/hoek@0.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.4.3

url pkg:npm/hoek@0.4.4

purl pkg:npm/hoek@0.4.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.4.4

url pkg:npm/hoek@0.4.5

purl pkg:npm/hoek@0.4.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.4.5

url pkg:npm/hoek@0.5.0

purl pkg:npm/hoek@0.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.5.0

url pkg:npm/hoek@0.6.0

purl pkg:npm/hoek@0.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.6.0

url pkg:npm/hoek@0.6.1

purl pkg:npm/hoek@0.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.6.1

url pkg:npm/hoek@0.6.2

purl pkg:npm/hoek@0.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.6.2

url pkg:npm/hoek@0.7.0

purl pkg:npm/hoek@0.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.0

url pkg:npm/hoek@0.7.1

purl pkg:npm/hoek@0.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.1

url pkg:npm/hoek@0.7.2

purl pkg:npm/hoek@0.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.2

url pkg:npm/hoek@0.7.3

purl pkg:npm/hoek@0.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.3

url pkg:npm/hoek@0.7.4

purl pkg:npm/hoek@0.7.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.4

url pkg:npm/hoek@0.7.5

purl pkg:npm/hoek@0.7.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.5

url pkg:npm/hoek@0.7.6

purl pkg:npm/hoek@0.7.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.7.6

url pkg:npm/hoek@0.8.0

purl pkg:npm/hoek@0.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.8.0

url pkg:npm/hoek@0.8.1

purl pkg:npm/hoek@0.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.8.1

url pkg:npm/hoek@0.8.2

purl pkg:npm/hoek@0.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.8.2

url pkg:npm/hoek@0.8.3

purl pkg:npm/hoek@0.8.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.8.3

url pkg:npm/hoek@0.8.4

purl pkg:npm/hoek@0.8.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.8.4

url pkg:npm/hoek@0.8.5

purl pkg:npm/hoek@0.8.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.8.5

url pkg:npm/hoek@0.9.0

purl pkg:npm/hoek@0.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.9.0

url pkg:npm/hoek@0.9.1

purl pkg:npm/hoek@0.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.9.1

url pkg:npm/hoek@0.10.0

purl pkg:npm/hoek@0.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@0.10.0

url pkg:npm/hoek@1.0.0

purl pkg:npm/hoek@1.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.0.0

url pkg:npm/hoek@1.0.1

purl pkg:npm/hoek@1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.0.1

url pkg:npm/hoek@1.0.2

purl pkg:npm/hoek@1.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.0.2

url pkg:npm/hoek@1.0.3

purl pkg:npm/hoek@1.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.0.3

url pkg:npm/hoek@1.1.0

purl pkg:npm/hoek@1.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.1.0

url pkg:npm/hoek@1.1.1

purl pkg:npm/hoek@1.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.1.1

url pkg:npm/hoek@1.1.2

purl pkg:npm/hoek@1.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.1.2

url pkg:npm/hoek@1.2.0

purl pkg:npm/hoek@1.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.2.0

url pkg:npm/hoek@1.3.0

purl pkg:npm/hoek@1.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.3.0

url pkg:npm/hoek@1.4.0

purl pkg:npm/hoek@1.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.4.0

url pkg:npm/hoek@1.4.1

purl pkg:npm/hoek@1.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.4.1

url pkg:npm/hoek@1.5.0

purl pkg:npm/hoek@1.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.5.0

url pkg:npm/hoek@1.5.1

purl pkg:npm/hoek@1.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.5.1

url pkg:npm/hoek@1.5.2

purl pkg:npm/hoek@1.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@1.5.2

url pkg:npm/hoek@2.0.0

purl pkg:npm/hoek@2.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.0.0

url pkg:npm/hoek@2.1.0

purl pkg:npm/hoek@2.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.1.0

url pkg:npm/hoek@2.1.1

purl pkg:npm/hoek@2.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.1.1

url pkg:npm/hoek@2.2.0

purl pkg:npm/hoek@2.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.2.0

url pkg:npm/hoek@2.3.0

purl pkg:npm/hoek@2.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.3.0

url pkg:npm/hoek@2.4.0

purl pkg:npm/hoek@2.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.4.0

url pkg:npm/hoek@2.4.1

purl pkg:npm/hoek@2.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.4.1

url pkg:npm/hoek@2.5.0

purl pkg:npm/hoek@2.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.5.0

url pkg:npm/hoek@2.5.1

purl pkg:npm/hoek@2.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.5.1

url pkg:npm/hoek@2.6.0

purl pkg:npm/hoek@2.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.6.0

url pkg:npm/hoek@2.7.0

purl pkg:npm/hoek@2.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.7.0

url pkg:npm/hoek@2.8.0

purl pkg:npm/hoek@2.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.8.0

url pkg:npm/hoek@2.8.1

purl pkg:npm/hoek@2.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.8.1

url pkg:npm/hoek@2.9.0

purl pkg:npm/hoek@2.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.9.0

url pkg:npm/hoek@2.9.1

purl pkg:npm/hoek@2.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.9.1

url pkg:npm/hoek@2.10.0

purl pkg:npm/hoek@2.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.10.0

url pkg:npm/hoek@2.11.0

purl pkg:npm/hoek@2.11.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.11.0

url pkg:npm/hoek@2.11.1

purl pkg:npm/hoek@2.11.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.11.1

url pkg:npm/hoek@2.12.0

purl pkg:npm/hoek@2.12.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.12.0

url pkg:npm/hoek@2.13.0

purl pkg:npm/hoek@2.13.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.13.0

url pkg:npm/hoek@2.13.1

purl pkg:npm/hoek@2.13.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.13.1

url pkg:npm/hoek@2.14.0

purl pkg:npm/hoek@2.14.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.14.0

url pkg:npm/hoek@2.15.0

purl pkg:npm/hoek@2.15.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.15.0

url pkg:npm/hoek@2.16.0

purl pkg:npm/hoek@2.16.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.16.0

url pkg:npm/hoek@2.16.1

purl pkg:npm/hoek@2.16.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.16.1

url pkg:npm/hoek@2.16.2

purl pkg:npm/hoek@2.16.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.16.2

url pkg:npm/hoek@2.16.3

purl pkg:npm/hoek@2.16.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@2.16.3

url pkg:npm/hoek@3.0.0

purl pkg:npm/hoek@3.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@3.0.0

url pkg:npm/hoek@3.0.1

purl pkg:npm/hoek@3.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@3.0.1

url pkg:npm/hoek@3.0.2

purl pkg:npm/hoek@3.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@3.0.2

url pkg:npm/hoek@3.0.3

purl pkg:npm/hoek@3.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@3.0.3

url pkg:npm/hoek@3.0.4

purl pkg:npm/hoek@3.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@3.0.4

url pkg:npm/hoek@4.0.0

purl pkg:npm/hoek@4.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.0.0

url pkg:npm/hoek@4.0.1

purl pkg:npm/hoek@4.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.0.1

url pkg:npm/hoek@4.0.2

purl pkg:npm/hoek@4.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.0.2

url pkg:npm/hoek@4.1.0

purl pkg:npm/hoek@4.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.1.0

url pkg:npm/hoek@4.1.1

purl pkg:npm/hoek@4.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.1.1

100

url pkg:npm/hoek@4.2.0

purl pkg:npm/hoek@4.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@4.2.0

101

url pkg:npm/hoek@5.0.0

purl pkg:npm/hoek@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@5.0.0

102

url pkg:npm/hoek@5.0.1

purl pkg:npm/hoek@5.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@5.0.1

103

url pkg:npm/hoek@5.0.2

purl pkg:npm/hoek@5.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-f9fx-rs6v-x7d4

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:npm/hoek@5.0.2

104

url pkg:rpm/redhat/fh-system-dump-tool@1.0.0-5?arch=el7

purl pkg:rpm/redhat/fh-system-dump-tool@1.0.0-5?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fh-system-dump-tool@1.0.0-5%3Farch=el7

105

url pkg:rpm/redhat/fping@3.10-4?arch=el7map

purl pkg:rpm/redhat/fping@3.10-4?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/fping@3.10-4%3Farch=el7map

106

url pkg:rpm/redhat/nagios@4.0.8-8?arch=el7map

purl pkg:rpm/redhat/nagios@4.0.8-8?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nagios@4.0.8-8%3Farch=el7map

107

url pkg:rpm/redhat/nagios-plugins@2.0.3-3?arch=el7map

purl pkg:rpm/redhat/nagios-plugins@2.0.3-3?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nagios-plugins@2.0.3-3%3Farch=el7map

108

url pkg:rpm/redhat/perl-Crypt-CBC@2.33-2?arch=el7map

purl pkg:rpm/redhat/perl-Crypt-CBC@2.33-2?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/perl-Crypt-CBC@2.33-2%3Farch=el7map

109

url pkg:rpm/redhat/perl-Crypt-DES@2.05-20?arch=el7map

purl pkg:rpm/redhat/perl-Crypt-DES@2.05-20?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/perl-Crypt-DES@2.05-20%3Farch=el7map

110

url pkg:rpm/redhat/perl-Net-SNMP@6.0.1-7?arch=el7map

purl pkg:rpm/redhat/perl-Net-SNMP@6.0.1-7?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/perl-Net-SNMP@6.0.1-7%3Farch=el7map

111

url pkg:rpm/redhat/phantomjs@1.9.7-3?arch=el7map

purl pkg:rpm/redhat/phantomjs@1.9.7-3?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/phantomjs@1.9.7-3%3Farch=el7map

112

url pkg:rpm/redhat/python-meld3@0.6.10-1?arch=el7map

purl pkg:rpm/redhat/python-meld3@0.6.10-1?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-meld3@0.6.10-1%3Farch=el7map

113

url pkg:rpm/redhat/qstat@2.11-13.20080912svn311?arch=el7map

purl pkg:rpm/redhat/qstat@2.11-13.20080912svn311?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/qstat@2.11-13.20080912svn311%3Farch=el7map

114

url pkg:rpm/redhat/radiusclient-ng@0.5.6-9?arch=el7map

purl pkg:rpm/redhat/radiusclient-ng@0.5.6-9?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/radiusclient-ng@0.5.6-9%3Farch=el7map

115

url pkg:rpm/redhat/redis@2.8.21-2?arch=el7map

purl pkg:rpm/redhat/redis@2.8.21-2?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/redis@2.8.21-2%3Farch=el7map

116

url pkg:rpm/redhat/rhmap-fh-openshift-templates@4.6.0-5?arch=el7

purl pkg:rpm/redhat/rhmap-fh-openshift-templates@4.6.0-5?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhmap-fh-openshift-templates@4.6.0-5%3Farch=el7

117

url pkg:rpm/redhat/rhmap-mod_authnz_external@3.3.1-7?arch=el7map

purl pkg:rpm/redhat/rhmap-mod_authnz_external@3.3.1-7?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rhmap-mod_authnz_external@3.3.1-7%3Farch=el7map

118

url pkg:rpm/redhat/sendEmail@1.56-2?arch=el7

purl pkg:rpm/redhat/sendEmail@1.56-2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/sendEmail@1.56-2%3Farch=el7

119

url pkg:rpm/redhat/ssmtp@2.64-14?arch=el7map

purl pkg:rpm/redhat/ssmtp@2.64-14?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ssmtp@2.64-14%3Farch=el7map

120

url pkg:rpm/redhat/supervisor@3.1.3-3?arch=el7map

purl pkg:rpm/redhat/supervisor@3.1.3-3?arch=el7map

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3s88-wdk6-xyh6

vulnerability	VCID-6wfy-67je-97h1

vulnerability	VCID-am2z-v7gj-nqch

vulnerability	VCID-db8x-2vgu-47gu

vulnerability	VCID-tdkc-7dbb-uudh

vulnerability	VCID-yk3z-5fjt-q7gb

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/supervisor@3.1.3-3%3Farch=el7map

References

reference_url

https://access.redhat.com/errata/RHSA-2018:1263

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2018:1263

reference_url

https://access.redhat.com/errata/RHSA-2018:1264

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://access.redhat.com/errata/RHSA-2018:1264

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3728.json

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3728.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-3728

reference_id

reference_type

scores

value	0.01675
scoring_system	epss
scoring_elements	0.82135
published_at	2026-04-08T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82185
published_at	2026-04-18T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82148
published_at	2026-04-13T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82153
published_at	2026-04-12T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82162
published_at	2026-04-11T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82143
published_at	2026-04-09T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.8208
published_at	2026-04-01T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82092
published_at	2026-04-02T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82112
published_at	2026-04-04T12:55:00Z

value	0.01675
scoring_system	epss
scoring_elements	0.82109
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-3728

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3728
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3728

reference_url

https://github.com/hapijs/hoek

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/hapijs/hoek

reference_url

https://github.com/hapijs/hoek/commit/32ed5c9413321fbc37da5ca81a7cbab693786dee

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/hapijs/hoek/commit/32ed5c9413321fbc37da5ca81a7cbab693786dee

reference_url

https://github.com/hapijs/hoek/commit/5aed1a8c4a3d55722d1c799f2368857bf418d6df

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/hapijs/hoek/commit/5aed1a8c4a3d55722d1c799f2368857bf418d6df

reference_url

https://hackerone.com/reports/310439

reference_id

reference_type

scores

value	2.5
scoring_system	cvssv3
scoring_elements

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://hackerone.com/reports/310439

reference_url

https://snyk.io/vuln/npm:hoek:20180212

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://snyk.io/vuln/npm:hoek:20180212

reference_url

https://web.archive.org/web/20200227131737/https://www.securityfocus.com/bid/103108

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20200227131737/https://www.securityfocus.com/bid/103108

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1545893
reference_id	1545893
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1545893

reference_url

https://github.com/nodejs/security-wg/blob/main/vuln/npm/367.json

reference_id

367

reference_type

scores

value	2.5
scoring_system	cvssv3
scoring_elements

url

https://github.com/nodejs/security-wg/blob/main/vuln/npm/367.json

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-3728

reference_id

CVE-2018-3728

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-3728

reference_url

https://github.com/advisories/GHSA-jp4x-w63m-7wgm

reference_id

GHSA-jp4x-w63m-7wgm

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jp4x-w63m-7wgm

reference_url	https://access.redhat.com/errata/RHSA-2021:3917
reference_id	RHSA-2021:3917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3917

Weaknesses

cwe_id	1321
name	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
description	The product receives input from an upstream component that specifies attributes that are to be initialized or updated in an object, but it does not properly control modifications of attributes of the object prototype.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	20
name	Improper Input Validation
description	The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Exploits

Severity_range_score 2.5 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yk3z-5fjt-q7gb

Vulnerability Instance