Search for packages
| purl | pkg:maven/org.jboss.weld/weld-core-bom@2.0.0.Beta5 |
| Next non-vulnerable version | 2.2.8.Final |
| Latest non-vulnerable version | 2.2.8.Final |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1hkw-y3nn-zbea
Aliases: CVE-2014-8122 GHSA-338v-3958-8v8r |
Race condition in JBoss Weld before 2.2.8 and 3.x before 3.0.0 Alpha3 allows remote attackers to obtain information from a previous conversation via vectors related to a stale thread state. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T21:04:24.412570+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core-bom/CVE-2014-8122.yml | 38.4.0 |
| 2026-04-11T22:15:49.584938+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core-bom/CVE-2014-8122.yml | 38.3.0 |
| 2026-04-02T22:28:02.192783+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core-bom/CVE-2014-8122.yml | 38.1.0 |
| 2026-04-01T16:45:58.345231+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core-bom/CVE-2014-8122.yml | 38.0.0 |