{"url":"http://public2.vulnerablecode.io/api/packages/183991?format=json","purl":"pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.12.5-1jpp.1?arch=el4","type":"rpm","namespace":"redhat","name":"java-1.5.0-ibm","version":"1:1.5.0.12.5-1jpp.1","qualifiers":{"arch":"el4"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115580?format=json","vulnerability_id":"VCID-29au-1xbg-akd6","summary":"JDK: unspecified vulnerabilities fixed in 6u26 (Sound)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0814.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0814.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0814","reference_id":"","reference_type":"","scores":[{"value":"0.12941","scoring_system":"epss","scoring_elements":"0.94196","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0814"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=711677","reference_id":"711677","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711677"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1159","reference_id":"RHSA-2011:1159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1159"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1265","reference_id":"RHSA-2011:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0814"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-29au-1xbg-akd6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115577?format=json","vulnerability_id":"VCID-4et2-7mba-d3bz","summary":"JDK: unspecified vulnerability fixed in 6u26 (2D)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0873.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0873.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0873","reference_id":"","reference_type":"","scores":[{"value":"0.14991","scoring_system":"epss","scoring_elements":"0.94688","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0873"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=711675","reference_id":"711675","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711675"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0873"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4et2-7mba-d3bz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115575?format=json","vulnerability_id":"VCID-6ywz-2tsw-bkgh","summary":"OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0871.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0871.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0871","reference_id":"","reference_type":"","scores":[{"value":"0.10579","scoring_system":"epss","scoring_elements":"0.93411","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0871"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=706248","reference_id":"706248","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=706248"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0856","reference_id":"RHSA-2011:0856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0856"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0857","reference_id":"RHSA-2011:0857","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0857"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1159","reference_id":"RHSA-2011:1159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1159"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1265","reference_id":"RHSA-2011:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0871"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6ywz-2tsw-bkgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115572?format=json","vulnerability_id":"VCID-mngv-7mqt-nubr","summary":"OpenJDK: NetworkInterface information leak (Networking, 7013969)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0867.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0867.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0867","reference_id":"","reference_type":"","scores":[{"value":"0.03815","scoring_system":"epss","scoring_elements":"0.88318","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0867"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=706153","reference_id":"706153","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=706153"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0856","reference_id":"RHSA-2011:0856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0856"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0857","reference_id":"RHSA-2011:0857","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0857"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1159","reference_id":"RHSA-2011:1159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1159"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1265","reference_id":"RHSA-2011:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0867"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mngv-7mqt-nubr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115569?format=json","vulnerability_id":"VCID-n4f1-mpz2-3ygs","summary":"OpenJDK: Deserialization allows creation of mutable SignedObject (Deserialization, 6618658)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0865.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0865.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0865","reference_id":"","reference_type":"","scores":[{"value":"0.03779","scoring_system":"epss","scoring_elements":"0.88263","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0865"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=706106","reference_id":"706106","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=706106"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0856","reference_id":"RHSA-2011:0856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0856"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0857","reference_id":"RHSA-2011:0857","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0857"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1159","reference_id":"RHSA-2011:1159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1159"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1265","reference_id":"RHSA-2011:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0865"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n4f1-mpz2-3ygs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115579?format=json","vulnerability_id":"VCID-pg12-c2x6-7fgk","summary":"JDK: unspecified vulnerabilities fixed in 6u26 (Sound)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0802.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0802.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0802","reference_id":"","reference_type":"","scores":[{"value":"0.12941","scoring_system":"epss","scoring_elements":"0.94196","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0802"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=711677","reference_id":"711677","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=711677"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1159","reference_id":"RHSA-2011:1159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1159"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1265","reference_id":"RHSA-2011:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0802"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pg12-c2x6-7fgk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/115571?format=json","vulnerability_id":"VCID-vtss-zfr6-2uby","summary":"OpenJDK: integer overflows in JPEGImageReader and font SunLayoutEngine (2D, 7013519)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0862.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0862.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0862","reference_id":"","reference_type":"","scores":[{"value":"0.12941","scoring_system":"epss","scoring_elements":"0.94196","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-0862"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=706139","reference_id":"706139","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=706139"},{"reference_url":"https://security.gentoo.org/glsa/201111-02","reference_id":"GLSA-201111-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201111-02"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0856","reference_id":"RHSA-2011:0856","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0856"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0857","reference_id":"RHSA-2011:0857","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0857"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0860","reference_id":"RHSA-2011:0860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:0938","reference_id":"RHSA-2011:0938","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:0938"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1087","reference_id":"RHSA-2011:1087","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1087"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1159","reference_id":"RHSA-2011:1159","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1159"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1265","reference_id":"RHSA-2011:1265","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1265"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"}],"fixed_packages":[],"aliases":["CVE-2011-0862"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vtss-zfr6-2uby"}],"fixing_vulnerabilities":[],"risk_score":"0.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.5.0-ibm@1:1.5.0.12.5-1jpp.1%3Farch=el4"}