VulnerableCode Package Details - pkg:maven/org.apache.axis2/axis2-transport-http@1.8.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.apache.axis2/axis2-transport-http@1.8.0

purl	pkg:maven/org.apache.axis2/axis2-transport-http@1.8.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-p5z6-pk2j-63bq	Apache Axis2 has Improper Input Validation Apache Axis2/Java 1.7.9 and earlier does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVE-2012-5785 GHSA-wwq7-pxwc-p4rc

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T11:34:41.040382+00:00	GithubOSV Importer	Fixing	VCID-p5z6-pk2j-63bq	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wwq7-pxwc-p4rc/GHSA-wwq7-pxwc-p4rc.json	38.6.0
2026-05-30T20:59:19.179862+00:00	GitLab Importer	Fixing	VCID-p5z6-pk2j-63bq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.axis2/axis2-transport-http/CVE-2012-5785.yml	38.6.0