{"url":"http://public2.vulnerablecode.io/api/packages/126631?format=json","purl":"pkg:rpm/redhat/java-1.4.2-ibm-sap@1.4.2.13.11.sap-1jpp.1?arch=el4","type":"rpm","namespace":"redhat","name":"java-1.4.2-ibm-sap","version":"1.4.2.13.11.sap-1jpp.1","qualifiers":{"arch":"el4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40947?format=json","vulnerability_id":"VCID-2fdb-zr4u-juga","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3547.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3547.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3547","reference_id":"","reference_type":"","scores":[{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81214","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81222","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81245","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81244","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81272","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81277","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81298","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81284","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81276","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81313","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81315","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81337","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81344","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81349","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01525","scoring_system":"epss","scoring_elements":"0.81366","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3547"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745387","reference_id":"745387","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745387"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1478","reference_id":"RHSA-2011:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3547"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2fdb-zr4u-juga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40945?format=json","vulnerability_id":"VCID-8618-ufd4-ukb6","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3545.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3545.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3545","reference_id":"","reference_type":"","scores":[{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92733","published_at":"2026-04-01T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92739","published_at":"2026-04-02T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92745","published_at":"2026-04-04T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92743","published_at":"2026-04-07T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92752","published_at":"2026-04-08T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92757","published_at":"2026-04-09T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92762","published_at":"2026-04-13T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92761","published_at":"2026-04-12T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92773","published_at":"2026-04-16T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92772","published_at":"2026-04-18T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92777","published_at":"2026-04-21T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92783","published_at":"2026-04-26T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92779","published_at":"2026-04-29T12:55:00Z"},{"value":"0.09335","scoring_system":"epss","scoring_elements":"0.92788","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3545"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=747191","reference_id":"747191","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=747191"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1478","reference_id":"RHSA-2011:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-3545"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8618-ufd4-ukb6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40952?format=json","vulnerability_id":"VCID-bmqy-5rm7-pqhx","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3552.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3552.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3552","reference_id":"","reference_type":"","scores":[{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.8204","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82052","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82073","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82069","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82095","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82102","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82121","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82112","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82104","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82139","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82141","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82164","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82175","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82178","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01668","scoring_system":"epss","scoring_elements":"0.82194","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3552"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745397","reference_id":"745397","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745397"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1478","reference_id":"RHSA-2011:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3552"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bmqy-5rm7-pqhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40956?format=json","vulnerability_id":"VCID-c2zx-s8vs-fbgp","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3556.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3556.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3556","reference_id":"","reference_type":"","scores":[{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99436","published_at":"2026-04-01T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99435","published_at":"2026-04-02T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99437","published_at":"2026-04-04T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99438","published_at":"2026-04-07T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.9944","published_at":"2026-04-09T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99441","published_at":"2026-04-11T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99442","published_at":"2026-04-13T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99445","published_at":"2026-04-21T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99447","published_at":"2026-04-29T12:55:00Z"},{"value":"0.87065","scoring_system":"epss","scoring_elements":"0.99448","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3556"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745459","reference_id":"745459","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745459"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17535.rb","reference_id":"CVE-2011-3556","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/17535.rb"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1478","reference_id":"RHSA-2011:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3556"],"risk_score":1.6,"exploitability":"2.0","weighted_severity":"0.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c2zx-s8vs-fbgp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40939?format=json","vulnerability_id":"VCID-e1yx-dxa6-1bba","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3389.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3389","reference_id":"","reference_type":"","scores":[{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88099","published_at":"2026-04-01T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88156","published_at":"2026-04-09T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88165","published_at":"2026-04-11T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88159","published_at":"2026-04-12T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.8816","published_at":"2026-04-13T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88174","published_at":"2026-04-16T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88172","published_at":"2026-04-21T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88108","published_at":"2026-04-02T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88124","published_at":"2026-04-04T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.88131","published_at":"2026-04-07T12:55:00Z"},{"value":"0.03832","scoring_system":"epss","scoring_elements":"0.8815","published_at":"2026-04-08T12:55:00Z"},{"value":"0.03933","scoring_system":"epss","scoring_elements":"0.88364","published_at":"2026-04-29T12:55:00Z"},{"value":"0.03933","scoring_system":"epss","scoring_elements":"0.88375","published_at":"2026-05-05T12:55:00Z"},{"value":"0.03933","scoring_system":"epss","scoring_elements":"0.88358","published_at":"2026-04-24T12:55:00Z"},{"value":"0.03933","scoring_system":"epss","scoring_elements":"0.88362","published_at":"2026-04-26T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3389"},{"reference_url":"https://curl.se/docs/CVE-2011-3389.html","reference_id":"","reference_type":"","scores":[{"value":"High","scoring_system":"cvssv3.1","scoring_elements":""}],"url":"https://curl.se/docs/CVE-2011-3389.html"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3389"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"3.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=737506","reference_id":"737506","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=737506"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201203-02","reference_id":"GLSA-201203-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201203-02"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0508","reference_id":"RHSA-2012:0508","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0508"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3389"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e1yx-dxa6-1bba"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40949?format=json","vulnerability_id":"VCID-e5f1-7dwg-vfdh","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3549.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3549.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3549","reference_id":"","reference_type":"","scores":[{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86024","published_at":"2026-04-01T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86035","published_at":"2026-04-02T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86051","published_at":"2026-04-07T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86071","published_at":"2026-04-08T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86081","published_at":"2026-04-09T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86095","published_at":"2026-04-11T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86093","published_at":"2026-04-12T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86088","published_at":"2026-04-13T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86106","published_at":"2026-04-16T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86111","published_at":"2026-04-18T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86104","published_at":"2026-04-21T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86124","published_at":"2026-04-24T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86134","published_at":"2026-04-29T12:55:00Z"},{"value":"0.02791","scoring_system":"epss","scoring_elements":"0.86153","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3549"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=747198","reference_id":"747198","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=747198"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1478","reference_id":"RHSA-2011:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-3549"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e5f1-7dwg-vfdh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40948?format=json","vulnerability_id":"VCID-qt82-aw67-tqhk","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3548.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3548.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3548","reference_id":"","reference_type":"","scores":[{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86736","published_at":"2026-04-01T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86747","published_at":"2026-04-02T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86766","published_at":"2026-04-04T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86764","published_at":"2026-04-07T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86783","published_at":"2026-04-08T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86792","published_at":"2026-04-09T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86805","published_at":"2026-04-11T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86802","published_at":"2026-04-12T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86798","published_at":"2026-04-13T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86813","published_at":"2026-04-16T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86817","published_at":"2026-04-18T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86816","published_at":"2026-04-21T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86832","published_at":"2026-04-24T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86838","published_at":"2026-04-29T12:55:00Z"},{"value":"0.03096","scoring_system":"epss","scoring_elements":"0.86862","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3548"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745473","reference_id":"745473","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745473"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1478","reference_id":"RHSA-2011:1478","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1478"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3548"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qt82-aw67-tqhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40964?format=json","vulnerability_id":"VCID-y93w-et8f-8bgr","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3560.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3560.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3560","reference_id":"","reference_type":"","scores":[{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82259","published_at":"2026-04-01T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82272","published_at":"2026-04-02T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82292","published_at":"2026-04-04T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82286","published_at":"2026-04-07T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82313","published_at":"2026-04-08T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.8232","published_at":"2026-04-09T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.8234","published_at":"2026-04-11T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82334","published_at":"2026-04-12T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82328","published_at":"2026-04-13T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82362","published_at":"2026-04-16T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82363","published_at":"2026-04-18T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82365","published_at":"2026-04-21T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82387","published_at":"2026-04-24T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82398","published_at":"2026-04-26T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.82402","published_at":"2026-04-29T12:55:00Z"},{"value":"0.01709","scoring_system":"epss","scoring_elements":"0.8242","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3560"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745379","reference_id":"745379","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745379"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0508","reference_id":"RHSA-2012:0508","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0508"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3560"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y93w-et8f-8bgr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/40957?format=json","vulnerability_id":"VCID-ykt4-n3sx-v3cd","summary":"Multiple vulnerabilities have been found in the Oracle JRE/JDK,\n    allowing attackers to cause unspecified impact.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3557.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-3557.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3557","reference_id":"","reference_type":"","scores":[{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.8814","published_at":"2026-04-01T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88149","published_at":"2026-04-02T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88165","published_at":"2026-04-04T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.8817","published_at":"2026-04-07T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.8819","published_at":"2026-04-08T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88196","published_at":"2026-04-09T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88206","published_at":"2026-04-11T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88198","published_at":"2026-04-12T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88199","published_at":"2026-04-13T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88213","published_at":"2026-04-16T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88212","published_at":"2026-04-21T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88229","published_at":"2026-04-24T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88234","published_at":"2026-04-26T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.88237","published_at":"2026-04-29T12:55:00Z"},{"value":"0.03851","scoring_system":"epss","scoring_elements":"0.8825","published_at":"2026-05-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-3557"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745464","reference_id":"745464","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745464"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1380","reference_id":"RHSA-2011:1380","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1380"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1384","reference_id":"RHSA-2011:1384","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1384"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0006","reference_id":"RHSA-2012:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0034","reference_id":"RHSA-2012:0034","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0343","reference_id":"RHSA-2012:0343","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0508","reference_id":"RHSA-2012:0508","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0508"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://usn.ubuntu.com/1263-1/","reference_id":"USN-1263-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1263-1/"}],"fixed_packages":[],"aliases":["CVE-2011-3557"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ykt4-n3sx-v3cd"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.4.2-ibm-sap@1.4.2.13.11.sap-1jpp.1%3Farch=el4"}