Search for packages
| purl | pkg:maven/org.jboss.weld/weld-core@2.2.0.Alpha2 |
| Next non-vulnerable version | 2.2.8.Final |
| Latest non-vulnerable version | 3.0.0.Alpha3 |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1hkw-y3nn-zbea
Aliases: CVE-2014-8122 GHSA-338v-3958-8v8r |
Race condition in JBoss Weld before 2.2.8 and 3.x before 3.0.0 Alpha3 allows remote attackers to obtain information from a previous conversation via vectors related to a stale thread state. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T20:32:15.332203+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core/CVE-2014-8122.yml | 38.4.0 |
| 2026-04-11T21:42:38.555775+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core/CVE-2014-8122.yml | 38.3.0 |
| 2026-04-02T21:56:47.131282+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core/CVE-2014-8122.yml | 38.1.0 |
| 2026-04-01T16:13:57.930726+00:00 | GitLab Importer | Affected by | VCID-1hkw-y3nn-zbea | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jboss.weld/weld-core/CVE-2014-8122.yml | 38.0.0 |