{"url":"http://public2.vulnerablecode.io/api/packages/25450?format=json","purl":"pkg:maven/io.github.skylot/jadx-core@1.4.2","type":"maven","namespace":"io.github.skylot","name":"jadx-core","version":"1.4.2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"1.5.0","latest_non_vulnerable_version":"1.5.0","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/211057?format=json","vulnerability_id":"VCID-37rz-kd8k-w3cp","summary":"skylot jadx affected by Incorrect Behavior Order in vulnerable dependency","references":[{"reference_url":"https://github.com/skylot/jadx","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/skylot/jadx"},{"reference_url":"https://github.com/skylot/jadx/releases/tag/v1.4.3","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/skylot/jadx/releases/tag/v1.4.3"},{"reference_url":"https://github.com/advisories/GHSA-fjh6-p566-wr6q","reference_id":"GHSA-fjh6-p566-wr6q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-fjh6-p566-wr6q"},{"reference_url":"https://github.com/skylot/jadx/security/advisories/GHSA-fjh6-p566-wr6q","reference_id":"GHSA-fjh6-p566-wr6q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/skylot/jadx/security/advisories/GHSA-fjh6-p566-wr6q"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25451?format=json","purl":"pkg:maven/io.github.skylot/jadx-core@1.4.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-s31k-pu54-43fv"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/io.github.skylot/jadx-core@1.4.3"}],"aliases":["GHSA-fjh6-p566-wr6q"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-37rz-kd8k-w3cp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/211755?format=json","vulnerability_id":"VCID-s31k-pu54-43fv","summary":"JADX file override vulnerability","references":[{"reference_url":"https://github.com/skylot/jadx","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/skylot/jadx"},{"reference_url":"https://github.com/skylot/jadx/commit/d86449a8ea26381d0ce6fafaed7deb7542dfd70b","reference_id":"","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/skylot/jadx/commit/d86449a8ea26381d0ce6fafaed7deb7542dfd70b"},{"reference_url":"https://github.com/advisories/GHSA-hvp5-5x4f-33fq","reference_id":"GHSA-hvp5-5x4f-33fq","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-hvp5-5x4f-33fq"},{"reference_url":"https://github.com/skylot/jadx/security/advisories/GHSA-hvp5-5x4f-33fq","reference_id":"GHSA-hvp5-5x4f-33fq","reference_type":"","scores":[{"value":"3.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N"},{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/skylot/jadx/security/advisories/GHSA-hvp5-5x4f-33fq"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/30706?format=json","purl":"pkg:maven/io.github.skylot/jadx-core@1.5.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/io.github.skylot/jadx-core@1.5.0"}],"aliases":["GHSA-hvp5-5x4f-33fq"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s31k-pu54-43fv"}],"fixing_vulnerabilities":[],"risk_score":"3.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/io.github.skylot/jadx-core@1.4.2"}