Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/javassist@3.12.0-6.SP1.ep5?arch=el5
Typerpm
Namespaceredhat
Namejavassist
Version3.12.0-6.SP1.ep5
Qualifiers
arch el5
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-63qc-hsp1-yyb4
vulnerability_id VCID-63qc-hsp1-yyb4
summary jbossws: Prone to character encoding pattern attack (XML Encryption flaw)
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1096.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1096.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-1096
reference_id
reference_type
scores
0
value 0.01165
scoring_system epss
scoring_elements 0.78962
published_at 2026-06-04T12:55:00Z
1
value 0.01165
scoring_system epss
scoring_elements 0.78989
published_at 2026-06-05T12:55:00Z
2
value 0.01165
scoring_system epss
scoring_elements 0.78995
published_at 2026-06-06T12:55:00Z
3
value 0.01165
scoring_system epss
scoring_elements 0.78986
published_at 2026-06-07T12:55:00Z
4
value 0.01165
scoring_system epss
scoring_elements 0.78975
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-1096
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=681916
reference_id 681916
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=681916
3
reference_url https://access.redhat.com/errata/RHSA-2012:1330
reference_id RHSA-2012:1330
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1330
4
reference_url https://access.redhat.com/errata/RHSA-2012:1344
reference_id RHSA-2012:1344
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1344
5
reference_url https://access.redhat.com/errata/RHSA-2013:0261
reference_id RHSA-2013:0261
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0261
6
reference_url https://access.redhat.com/errata/RHSA-2013:0569
reference_id RHSA-2013:0569
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0569
fixed_packages
aliases CVE-2011-1096
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-63qc-hsp1-yyb4
1
url VCID-63z7-g787-h7f3
vulnerability_id VCID-63z7-g787-h7f3
summary JBoss: CallerIdentityLoginModule retaining password from previous call if a null password is provided
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3369.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3369.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3369
reference_id
reference_type
scores
0
value 0.0131
scoring_system epss
scoring_elements 0.80141
published_at 2026-06-04T12:55:00Z
1
value 0.0131
scoring_system epss
scoring_elements 0.80166
published_at 2026-06-05T12:55:00Z
2
value 0.0131
scoring_system epss
scoring_elements 0.8017
published_at 2026-06-06T12:55:00Z
3
value 0.0131
scoring_system epss
scoring_elements 0.80165
published_at 2026-06-07T12:55:00Z
4
value 0.0131
scoring_system epss
scoring_elements 0.80158
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3369
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=836451
reference_id 836451
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=836451
fixed_packages
aliases CVE-2012-3369
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-63z7-g787-h7f3
2
url VCID-69cz-cz31-9bdx
vulnerability_id VCID-69cz-cz31-9bdx
summary JBoss: AuthorizationInterceptor allows JMX operation to proceed despite authorization failure
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5478.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5478.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-5478
reference_id
reference_type
scores
0
value 0.00518
scoring_system epss
scoring_elements 0.67122
published_at 2026-06-04T12:55:00Z
1
value 0.00518
scoring_system epss
scoring_elements 0.67163
published_at 2026-06-05T12:55:00Z
2
value 0.00518
scoring_system epss
scoring_elements 0.6717
published_at 2026-06-06T12:55:00Z
3
value 0.00518
scoring_system epss
scoring_elements 0.67154
published_at 2026-06-07T12:55:00Z
4
value 0.00518
scoring_system epss
scoring_elements 0.67137
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-5478
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=874349
reference_id 874349
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=874349
fixed_packages
aliases CVE-2012-5478
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-69cz-cz31-9bdx
3
url VCID-73xk-f2f2-3ka3
vulnerability_id VCID-73xk-f2f2-3ka3
summary CSRF on jmx-console allows invocation of operations on mbeans
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2908.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2908.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2908
reference_id
reference_type
scores
0
value 0.00717
scoring_system epss
scoring_elements 0.72802
published_at 2026-06-04T12:55:00Z
1
value 0.00717
scoring_system epss
scoring_elements 0.7284
published_at 2026-06-05T12:55:00Z
2
value 0.00717
scoring_system epss
scoring_elements 0.72847
published_at 2026-06-06T12:55:00Z
3
value 0.00717
scoring_system epss
scoring_elements 0.7283
published_at 2026-06-07T12:55:00Z
4
value 0.00717
scoring_system epss
scoring_elements 0.72817
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2908
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=730176
reference_id 730176
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=730176
3
reference_url https://access.redhat.com/errata/RHSA-2012:1152
reference_id RHSA-2012:1152
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1152
4
reference_url https://access.redhat.com/errata/RHSA-2012:1165
reference_id RHSA-2012:1165
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1165
5
reference_url https://access.redhat.com/errata/RHSA-2012:1232
reference_id RHSA-2012:1232
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1232
fixed_packages
aliases CVE-2011-2908
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-73xk-f2f2-3ka3
4
url VCID-b263-hw51-qbak
vulnerability_id VCID-b263-hw51-qbak
summary 
Use of a Broken or Risky Cryptographic Algorithm  in Apache WSS4J
The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache WSS4J before 1.6.5 is susceptible to a Bleichenbacher attack.
references
0
reference_url http://cxf.apache.org/note-on-cve-2011-2487.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://cxf.apache.org/note-on-cve-2011-2487.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2013-0191.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0191.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2013-0192.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0192.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2013-0193.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0193.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2013-0194.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0194.html
5
reference_url http://rhn.redhat.com/errata/RHSA-2013-0195.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0195.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2013-0196.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0196.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2013-0198.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0198.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2013-0221.html
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0221.html
9
reference_url https://access.redhat.com/errata/RHSA-2013:0191
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0191
10
reference_url https://access.redhat.com/errata/RHSA-2013:0192
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0192
11
reference_url https://access.redhat.com/errata/RHSA-2013:0193
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0193
12
reference_url https://access.redhat.com/errata/RHSA-2013:0194
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0194
13
reference_url https://access.redhat.com/errata/RHSA-2013:0195
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0195
14
reference_url https://access.redhat.com/errata/RHSA-2013:0196
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0196
15
reference_url https://access.redhat.com/errata/RHSA-2013:0197
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0197
16
reference_url https://access.redhat.com/errata/RHSA-2013:0198
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0198
17
reference_url https://access.redhat.com/errata/RHSA-2013:0221
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0221
18
reference_url https://access.redhat.com/errata/RHSA-2013:0533
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0533
19
reference_url https://access.redhat.com/errata/RHSA-2013:0953
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2013:0953
20
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2487.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2487.json
21
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2487
reference_id
reference_type
scores
0
value 0.0049
scoring_system epss
scoring_elements 0.65975
published_at 2026-06-05T12:55:00Z
1
value 0.0049
scoring_system epss
scoring_elements 0.6596
published_at 2026-06-08T12:55:00Z
2
value 0.0049
scoring_system epss
scoring_elements 0.65972
published_at 2026-06-07T12:55:00Z
3
value 0.0049
scoring_system epss
scoring_elements 0.65986
published_at 2026-06-06T12:55:00Z
4
value 0.0049
scoring_system epss
scoring_elements 0.65922
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2487
22
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=713539
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=713539
23
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/81737
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/81737
24
reference_url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
25
reference_url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
26
reference_url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
27
reference_url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
28
reference_url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
29
reference_url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
30
reference_url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
31
reference_url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
32
reference_url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
33
reference_url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
34
reference_url https://web.archive.org/web/20210122063156/http://www.securityfocus.com/bid/57549
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20210122063156/http://www.securityfocus.com/bid/57549
35
reference_url https://www.nds.ruhr-uni-bochum.de/research/publications/breaking-xml-encryption-pkcs15
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://www.nds.ruhr-uni-bochum.de/research/publications/breaking-xml-encryption-pkcs15
36
reference_url http://www.securityfocus.com/bid/57549
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/57549
37
reference_url https://access.redhat.com/security/cve/CVE-2011-2487
reference_id CVE-2011-2487
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2011-2487
38
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-2487
reference_id CVE-2011-2487
reference_type
scores
0
value 5.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2011-2487
39
reference_url https://github.com/advisories/GHSA-4qqf-hmv6-r6wh
reference_id GHSA-4qqf-hmv6-r6wh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4qqf-hmv6-r6wh
fixed_packages
aliases CVE-2011-2487, GHSA-4qqf-hmv6-r6wh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b263-hw51-qbak
5
url VCID-b8zs-wt4g-c3fn
vulnerability_id VCID-b8zs-wt4g-c3fn
summary 
XML Signature/Encryption Not Validated in Apache CXF
Apache CXF 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1, when a Supporting Token specifies a child WS-SecurityPolicy 1.1 or 1.2 policy, does not properly ensure that an XML element is signed or encrypted, which has unspecified impact and attack vectors.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2012-1591.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1591.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2012-1592.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1592.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2012-1593.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1593.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2012-1594.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2012-1594.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2013-0191.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2013-0191.html
5
reference_url http://rhn.redhat.com/errata/RHSA-2013-0192.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2013-0192.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2013-0194.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2013-0194.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2013-0195.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2013-0195.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2013-0196.html
reference_id
reference_type
scores
url http://rhn.redhat.com/errata/RHSA-2013-0196.html
9
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2379.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2379.json
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2379
reference_id
reference_type
scores
0
value 0.03752
scoring_system epss
scoring_elements 0.88254
published_at 2026-06-06T12:55:00Z
1
value 0.03752
scoring_system epss
scoring_elements 0.88253
published_at 2026-06-08T12:55:00Z
2
value 0.03752
scoring_system epss
scoring_elements 0.88252
published_at 2026-06-07T12:55:00Z
3
value 0.03752
scoring_system epss
scoring_elements 0.88251
published_at 2026-06-05T12:55:00Z
4
value 0.03752
scoring_system epss
scoring_elements 0.88232
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2379
11
reference_url https://cxf.apache.org/cve-2012-2379.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://cxf.apache.org/cve-2012-2379.html
12
reference_url https://github.com/apache/cxf
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/cxf
13
reference_url https://github.com/apache/cxf/commit/440528d928be1e2030e7227b958c9c072847d9b2
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/cxf/commit/440528d928be1e2030e7227b958c9c072847d9b2
14
reference_url https://github.com/apache/cxf/commit/4500bf901cb2a7312291b6663045f28a95d2a0c4
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/apache/cxf/commit/4500bf901cb2a7312291b6663045f28a95d2a0c4
15
reference_url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
16
reference_url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E
17
reference_url https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E
18
reference_url https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E
19
reference_url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
20
reference_url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E
21
reference_url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
22
reference_url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E
23
reference_url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
24
reference_url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E
25
reference_url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
26
reference_url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E
27
reference_url https://svn.apache.org/viewvc?view=revision&revision=1338219
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://svn.apache.org/viewvc?view=revision&revision=1338219
28
reference_url http://svn.apache.org/viewvc?view=revision&revision=1338219
reference_id
reference_type
scores
url http://svn.apache.org/viewvc?view=revision&revision=1338219
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=826534
reference_id 826534
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=826534
30
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-2379
reference_id CVE-2012-2379
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2012-2379
31
reference_url http://cxf.apache.org/cve-2012-2379.html
reference_id CVE-2012-2379.HTML
reference_type
scores
url http://cxf.apache.org/cve-2012-2379.html
32
reference_url https://github.com/advisories/GHSA-2g99-c67p-56hm
reference_id GHSA-2g99-c67p-56hm
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2g99-c67p-56hm
33
reference_url https://access.redhat.com/errata/RHSA-2012:1559
reference_id RHSA-2012:1559
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1559
34
reference_url https://access.redhat.com/errata/RHSA-2012:1573
reference_id RHSA-2012:1573
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1573
35
reference_url https://access.redhat.com/errata/RHSA-2012:1591
reference_id RHSA-2012:1591
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1591
36
reference_url https://access.redhat.com/errata/RHSA-2012:1592
reference_id RHSA-2012:1592
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1592
37
reference_url https://access.redhat.com/errata/RHSA-2012:1593
reference_id RHSA-2012:1593
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1593
38
reference_url https://access.redhat.com/errata/RHSA-2012:1594
reference_id RHSA-2012:1594
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1594
fixed_packages
aliases CVE-2012-2379, GHSA-2g99-c67p-56hm
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b8zs-wt4g-c3fn
6
url VCID-dpyg-1q5g-2bhu
vulnerability_id VCID-dpyg-1q5g-2bhu
summary JBoss invoker servlets do not require authentication
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0874.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0874.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-0874
reference_id
reference_type
scores
0
value 0.5129
scoring_system epss
scoring_elements 0.97933
published_at 2026-06-04T12:55:00Z
1
value 0.5129
scoring_system epss
scoring_elements 0.97937
published_at 2026-06-05T12:55:00Z
2
value 0.5129
scoring_system epss
scoring_elements 0.97938
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-0874
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=795645
reference_id 795645
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=795645
3
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/30211.txt
reference_id CVE-2012-0874
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/30211.txt
fixed_packages
aliases CVE-2012-0874
risk_score 1.0
exploitability 2.0
weighted_severity 0.5
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dpyg-1q5g-2bhu
7
url VCID-hcrz-cwpf-37db
vulnerability_id VCID-hcrz-cwpf-37db
summary 
EL expressions double evaluation
When a container supports Expression Language (EL), this package evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a name attribute in a `spring:hasBindErrors` tag; path attribute in a `spring:bind` or `spring:nestedpath` tag; `arguments`, `code`, `text`, `var`, `scope`, or `message` attribute in a `spring:message` or `spring:theme` tag; or `var`, `scope`, or `value` attribute in a `spring:transform` tag, aka Expression Language Injection.
references
0
reference_url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677814
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677814
1
reference_url http://rhn.redhat.com/errata/RHSA-2013-0191.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0191.html
2
reference_url http://rhn.redhat.com/errata/RHSA-2013-0192.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0192.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2013-0194.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0194.html
4
reference_url http://rhn.redhat.com/errata/RHSA-2013-0195.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0195.html
5
reference_url http://rhn.redhat.com/errata/RHSA-2013-0196.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0196.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2013-0198.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0198.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2013-0221.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0221.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2013-0533.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0533.html
9
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2730.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2730.json
10
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-2730
reference_id
reference_type
scores
0
value 0.46306
scoring_system epss
scoring_elements 0.97719
published_at 2026-06-08T12:55:00Z
1
value 0.46306
scoring_system epss
scoring_elements 0.97712
published_at 2026-06-04T12:55:00Z
2
value 0.46306
scoring_system epss
scoring_elements 0.97716
published_at 2026-06-05T12:55:00Z
3
value 0.46306
scoring_system epss
scoring_elements 0.97717
published_at 2026-06-06T12:55:00Z
4
value 0.46306
scoring_system epss
scoring_elements 0.97718
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-2730
11
reference_url https://docs.google.com/document/d/1dc1xxO8UMFaGLOwgkykYdghGWm_2Gn0iCrxFsympqcE/edit
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://docs.google.com/document/d/1dc1xxO8UMFaGLOwgkykYdghGWm_2Gn0iCrxFsympqcE/edit
12
reference_url https://github.com/spring-projects/spring-framework
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spring-projects/spring-framework
13
reference_url https://github.com/spring-projects/spring-framework/commit/62ccc8dd7e645fb91705d44919abac838cb5ca3f
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spring-projects/spring-framework/commit/62ccc8dd7e645fb91705d44919abac838cb5ca3f
14
reference_url https://github.com/spring-projects/spring-framework/commit/9772eb8410e37cd0bdec0d1b133218446c778beb
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spring-projects/spring-framework/commit/9772eb8410e37cd0bdec0d1b133218446c778beb
15
reference_url https://github.com/spring-projects/spring-framework/commit/b8d86330d1fadc645630416c3aaebf131bf749fc
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/spring-projects/spring-framework/commit/b8d86330d1fadc645630416c3aaebf131bf749fc
16
reference_url https://github.com/spring-projects/spring-framework/commit/c8649087792d07df209fc75e0f9e2e3284e09fe
reference_id
reference_type
scores
url https://github.com/spring-projects/spring-framework/commit/c8649087792d07df209fc75e0f9e2e3284e09fe
17
reference_url https://github.com/spring-projects/spring-framework/commit/d95cbe23ee462245c5c2482e175f7b2a921b31c
reference_id
reference_type
scores
url https://github.com/spring-projects/spring-framework/commit/d95cbe23ee462245c5c2482e175f7b2a921b31c
18
reference_url https://nvd.nist.gov/vuln/detail/CVE-2011-2730
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2011-2730
19
reference_url https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2730
reference_id
reference_type
scores
url https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2730
20
reference_url http://www.debian.org/security/2012/dsa-2504
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.debian.org/security/2012/dsa-2504
21
reference_url http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
22
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=737608
reference_id 737608
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=737608
23
reference_url http://support.springsource.com/security/cve-2011-2730
reference_id CVE-2011-2730
reference_type
scores
url http://support.springsource.com/security/cve-2011-2730
24
reference_url https://github.com/advisories/GHSA-wv88-pf73-x22p
reference_id GHSA-wv88-pf73-x22p
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wv88-pf73-x22p
fixed_packages
aliases CVE-2011-2730, GHSA-wv88-pf73-x22p
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hcrz-cwpf-37db
8
url VCID-hmba-69hj-ekac
vulnerability_id VCID-hmba-69hj-ekac
summary JGroups diagnostics service enabled by default with no authentication when a JGroups channel is started
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2377.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2377.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2377
reference_id
reference_type
scores
0
value 0.00989
scoring_system epss
scoring_elements 0.7722
published_at 2026-06-04T12:55:00Z
1
value 0.00989
scoring_system epss
scoring_elements 0.77251
published_at 2026-06-05T12:55:00Z
2
value 0.00989
scoring_system epss
scoring_elements 0.77261
published_at 2026-06-06T12:55:00Z
3
value 0.00989
scoring_system epss
scoring_elements 0.7725
published_at 2026-06-07T12:55:00Z
4
value 0.00989
scoring_system epss
scoring_elements 0.7724
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2377
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=823392
reference_id 823392
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=823392
3
reference_url https://access.redhat.com/errata/RHSA-2012:1028
reference_id RHSA-2012:1028
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1028
4
reference_url https://access.redhat.com/errata/RHSA-2012:1232
reference_id RHSA-2012:1232
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1232
fixed_packages
aliases CVE-2012-2377
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hmba-69hj-ekac
9
url VCID-mzcu-pezd-dfgg
vulnerability_id VCID-mzcu-pezd-dfgg
summary JBoss: SecurityAssociation.getCredential() will return the previous credential if no security context is provided
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3370.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3370.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3370
reference_id
reference_type
scores
0
value 0.01673
scoring_system epss
scoring_elements 0.8248
published_at 2026-06-04T12:55:00Z
1
value 0.01673
scoring_system epss
scoring_elements 0.82509
published_at 2026-06-05T12:55:00Z
2
value 0.01673
scoring_system epss
scoring_elements 0.82508
published_at 2026-06-06T12:55:00Z
3
value 0.01673
scoring_system epss
scoring_elements 0.82505
published_at 2026-06-07T12:55:00Z
4
value 0.01673
scoring_system epss
scoring_elements 0.82498
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3370
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=836456
reference_id 836456
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=836456
fixed_packages
aliases CVE-2012-3370
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mzcu-pezd-dfgg
10
url VCID-s43d-q39b-bqbb
vulnerability_id VCID-s43d-q39b-bqbb
summary 
Credentials Management
The `NonManagedConnectionFactory` in JBoss logs the username and password in cleartext when an exception is thrown, which allows local users to obtain sensitive information by reading the log file.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0034.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0034.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-0034
reference_id
reference_type
scores
0
value 0.00071
scoring_system epss
scoring_elements 0.21855
published_at 2026-06-04T12:55:00Z
1
value 0.00071
scoring_system epss
scoring_elements 0.21935
published_at 2026-06-05T12:55:00Z
2
value 0.00071
scoring_system epss
scoring_elements 0.21922
published_at 2026-06-06T12:55:00Z
3
value 0.00071
scoring_system epss
scoring_elements 0.21875
published_at 2026-06-07T12:55:00Z
4
value 0.00071
scoring_system epss
scoring_elements 0.21816
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-0034
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=772835
reference_id 772835
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=772835
3
reference_url https://access.redhat.com/errata/RHSA-2012:0108
reference_id RHSA-2012:0108
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:0108
4
reference_url https://access.redhat.com/errata/RHSA-2012:1072
reference_id RHSA-2012:1072
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1072
fixed_packages
aliases CVE-2012-0034
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s43d-q39b-bqbb
11
url VCID-t57j-pu79-dbbn
vulnerability_id VCID-t57j-pu79-dbbn
summary
references
0
reference_url http://lists.opensuse.org/opensuse-updates/2012-12/msg00089.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2012-12/msg00089.html
1
reference_url http://lists.opensuse.org/opensuse-updates/2012-12/msg00090.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2012-12/msg00090.html
2
reference_url http://lists.opensuse.org/opensuse-updates/2013-01/msg00037.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-updates/2013-01/msg00037.html
3
reference_url http://marc.info/?l=bugtraq&m=136612293908376&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=136612293908376&w=2
4
reference_url http://marc.info/?l=bugtraq&m=139344343412337&w=2
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://marc.info/?l=bugtraq&m=139344343412337&w=2
5
reference_url http://rhn.redhat.com/errata/RHSA-2013-0004.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0004.html
6
reference_url http://rhn.redhat.com/errata/RHSA-2013-0005.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0005.html
7
reference_url http://rhn.redhat.com/errata/RHSA-2013-0146.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0146.html
8
reference_url http://rhn.redhat.com/errata/RHSA-2013-0147.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0147.html
9
reference_url http://rhn.redhat.com/errata/RHSA-2013-0151.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0151.html
10
reference_url http://rhn.redhat.com/errata/RHSA-2013-0157.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0157.html
11
reference_url http://rhn.redhat.com/errata/RHSA-2013-0158.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0158.html
12
reference_url http://rhn.redhat.com/errata/RHSA-2013-0162.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0162.html
13
reference_url http://rhn.redhat.com/errata/RHSA-2013-0163.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0163.html
14
reference_url http://rhn.redhat.com/errata/RHSA-2013-0164.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0164.html
15
reference_url http://rhn.redhat.com/errata/RHSA-2013-0191.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0191.html
16
reference_url http://rhn.redhat.com/errata/RHSA-2013-0192.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0192.html
17
reference_url http://rhn.redhat.com/errata/RHSA-2013-0194.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0194.html
18
reference_url http://rhn.redhat.com/errata/RHSA-2013-0195.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0195.html
19
reference_url http://rhn.redhat.com/errata/RHSA-2013-0196.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0196.html
20
reference_url http://rhn.redhat.com/errata/RHSA-2013-0198.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0198.html
21
reference_url http://rhn.redhat.com/errata/RHSA-2013-0221.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0221.html
22
reference_url http://rhn.redhat.com/errata/RHSA-2013-0235.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0235.html
23
reference_url http://rhn.redhat.com/errata/RHSA-2013-0623.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0623.html
24
reference_url http://rhn.redhat.com/errata/RHSA-2013-0640.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0640.html
25
reference_url http://rhn.redhat.com/errata/RHSA-2013-0641.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0641.html
26
reference_url http://rhn.redhat.com/errata/RHSA-2013-0642.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0642.html
27
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3546.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3546.json
28
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3546
reference_id
reference_type
scores
0
value 0.02215
scoring_system epss
scoring_elements 0.84792
published_at 2026-06-08T12:55:00Z
1
value 0.02215
scoring_system epss
scoring_elements 0.8478
published_at 2026-06-04T12:55:00Z
2
value 0.02215
scoring_system epss
scoring_elements 0.84804
published_at 2026-06-05T12:55:00Z
3
value 0.02215
scoring_system epss
scoring_elements 0.84809
published_at 2026-06-06T12:55:00Z
4
value 0.02215
scoring_system epss
scoring_elements 0.84803
published_at 2026-06-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3546
29
reference_url https://github.com/apache/tomcat
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat
30
reference_url https://github.com/apache/tomcat/commit/f78c0cdfc8a3c2efdfe6df6b69e5e3daafa3f588
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/tomcat/commit/f78c0cdfc8a3c2efdfe6df6b69e5e3daafa3f588
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-3546
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2012-3546
32
reference_url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19305
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19305
33
reference_url https://svn.apache.org/repos/asf/tomcat/tc7.0.x/trunk@1377892
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://svn.apache.org/repos/asf/tomcat/tc7.0.x/trunk@1377892
34
reference_url https://svn.apache.org/viewvc?view=rev&rev=1377892
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1377892
35
reference_url https://svn.apache.org/viewvc?view=rev&rev=1381035
reference_id
reference_type
scores
url https://svn.apache.org/viewvc?view=rev&rev=1381035
36
reference_url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/realm/RealmBase.java?r1=1377892&r2=1377891&pathrev=1377892
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/realm/RealmBase.java?r1=1377892&r2=1377891&pathrev=1377892
37
reference_url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1377892&r2=1377891&pathrev=1377892
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?r1=1377892&r2=1377891&pathrev=1377892
38
reference_url http://svn.apache.org/viewvc?view=revision&revision=1377892
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://svn.apache.org/viewvc?view=revision&revision=1377892
39
reference_url http://tomcat.apache.org/security-6.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-6.html
40
reference_url http://tomcat.apache.org/security-7.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://tomcat.apache.org/security-7.html
41
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=883634
reference_id 883634
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=883634
42
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3546
reference_id CVE-2012-3546
reference_type
scores
0
value Important
scoring_system apache_tomcat
scoring_elements
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3546
43
reference_url https://github.com/advisories/GHSA-jgm2-m5cg-f66g
reference_id GHSA-jgm2-m5cg-f66g
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-jgm2-m5cg-f66g
44
reference_url https://security.gentoo.org/glsa/201412-29
reference_id GLSA-201412-29
reference_type
scores
url https://security.gentoo.org/glsa/201412-29
45
reference_url https://access.redhat.com/errata/RHSA-2013:0004
reference_id RHSA-2013:0004
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0004
46
reference_url https://access.redhat.com/errata/RHSA-2013:0005
reference_id RHSA-2013:0005
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0005
47
reference_url https://access.redhat.com/errata/RHSA-2013:0146
reference_id RHSA-2013:0146
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0146
48
reference_url https://access.redhat.com/errata/RHSA-2013:0147
reference_id RHSA-2013:0147
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0147
49
reference_url https://access.redhat.com/errata/RHSA-2013:0151
reference_id RHSA-2013:0151
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0151
50
reference_url https://access.redhat.com/errata/RHSA-2013:0157
reference_id RHSA-2013:0157
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0157
51
reference_url https://access.redhat.com/errata/RHSA-2013:0158
reference_id RHSA-2013:0158
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0158
52
reference_url https://access.redhat.com/errata/RHSA-2013:0162
reference_id RHSA-2013:0162
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0162
53
reference_url https://access.redhat.com/errata/RHSA-2013:0163
reference_id RHSA-2013:0163
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0163
54
reference_url https://access.redhat.com/errata/RHSA-2013:0164
reference_id RHSA-2013:0164
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0164
55
reference_url https://access.redhat.com/errata/RHSA-2013:0235
reference_id RHSA-2013:0235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0235
56
reference_url https://access.redhat.com/errata/RHSA-2013:0623
reference_id RHSA-2013:0623
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0623
57
reference_url https://access.redhat.com/errata/RHSA-2013:0640
reference_id RHSA-2013:0640
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0640
58
reference_url https://access.redhat.com/errata/RHSA-2013:0641
reference_id RHSA-2013:0641
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0641
59
reference_url https://access.redhat.com/errata/RHSA-2013:0642
reference_id RHSA-2013:0642
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0642
60
reference_url https://usn.ubuntu.com/1685-1/
reference_id USN-1685-1
reference_type
scores
url https://usn.ubuntu.com/1685-1/
fixed_packages
aliases CVE-2012-3546, GHSA-jgm2-m5cg-f66g
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t57j-pu79-dbbn
12
url VCID-tya3-z9fx-2bae
vulnerability_id VCID-tya3-z9fx-2bae
summary JBoss: twiddle.sh accepts credentials as command line arguments, exposing them to other local users via a process listing
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5066.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5066.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2009-5066
reference_id
reference_type
scores
0
value 0.00072
scoring_system epss
scoring_elements 0.22078
published_at 2026-06-04T12:55:00Z
1
value 0.00072
scoring_system epss
scoring_elements 0.22162
published_at 2026-06-05T12:55:00Z
2
value 0.00072
scoring_system epss
scoring_elements 0.22149
published_at 2026-06-06T12:55:00Z
3
value 0.00072
scoring_system epss
scoring_elements 0.22101
published_at 2026-06-07T12:55:00Z
4
value 0.00072
scoring_system epss
scoring_elements 0.22044
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2009-5066
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=842477
reference_id 842477
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=842477
fixed_packages
aliases CVE-2009-5066
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tya3-z9fx-2bae
13
url VCID-uadc-4aq1-gkcx
vulnerability_id VCID-uadc-4aq1-gkcx
summary Console: XSS in invoke operation
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4575.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4575.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2011-4575
reference_id
reference_type
scores
0
value 0.01272
scoring_system epss
scoring_elements 0.79861
published_at 2026-06-04T12:55:00Z
1
value 0.01272
scoring_system epss
scoring_elements 0.79886
published_at 2026-06-05T12:55:00Z
2
value 0.01272
scoring_system epss
scoring_elements 0.79892
published_at 2026-06-06T12:55:00Z
3
value 0.01272
scoring_system epss
scoring_elements 0.79887
published_at 2026-06-07T12:55:00Z
4
value 0.01272
scoring_system epss
scoring_elements 0.79875
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2011-4575
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=760387
reference_id 760387
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=760387
fixed_packages
aliases CVE-2011-4575
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uadc-4aq1-gkcx
Fixing_vulnerabilities
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/javassist@3.12.0-6.SP1.ep5%3Farch=el5