{"url":"http://public2.vulnerablecode.io/api/packages/301279?format=json","purl":"pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.41-1jpp.1?arch=el5_9","type":"rpm","namespace":"redhat","name":"java-1.6.0-sun","version":"1:1.6.0.41-1jpp.1","qualifiers":{"arch":"el5_9"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70233?format=json","vulnerability_id":"VCID-67az-bzxs-5kes","summary":"SSL/TLS: CBC padding timing attack (lucky-13)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0169.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0169.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0169","reference_id":"","reference_type":"","scores":[{"value":"0.00943","scoring_system":"epss","scoring_elements":"0.76584","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-0169"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0169","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0169"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699885","reference_id":"699885","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699885"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699888","reference_id":"699888","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699888"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699889","reference_id":"699889","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699889"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=907589","reference_id":"907589","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=907589"},{"reference_url":"https://security.gentoo.org/glsa/201310-10","reference_id":"GLSA-201310-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-10"},{"reference_url":"https://security.gentoo.org/glsa/201312-03","reference_id":"GLSA-201312-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201312-03"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0273","reference_id":"RHSA-2013:0273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0274","reference_id":"RHSA-2013:0274","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0274"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0275","reference_id":"RHSA-2013:0275","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0275"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0531","reference_id":"RHSA-2013:0531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0532","reference_id":"RHSA-2013:0532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0587","reference_id":"RHSA-2013:0587","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0587"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0636","reference_id":"RHSA-2013:0636","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0636"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0782","reference_id":"RHSA-2013:0782","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0782"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0783","reference_id":"RHSA-2013:0783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0822","reference_id":"RHSA-2013:0822","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0822"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0823","reference_id":"RHSA-2013:0823","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0823"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0833","reference_id":"RHSA-2013:0833","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0855","reference_id":"RHSA-2013:0855","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0855"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1013","reference_id":"RHSA-2013:1013","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1013"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:0416","reference_id":"RHSA-2014:0416","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:0416"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4298","reference_id":"RHSA-2020:4298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4298"},{"reference_url":"https://usn.ubuntu.com/1732-1/","reference_id":"USN-1732-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1732-1/"},{"reference_url":"https://usn.ubuntu.com/1732-3/","reference_id":"USN-1732-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1732-3/"},{"reference_url":"https://usn.ubuntu.com/1735-1/","reference_id":"USN-1735-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1735-1/"}],"fixed_packages":[],"aliases":["CVE-2013-0169"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-67az-bzxs-5kes"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70117?format=json","vulnerability_id":"VCID-n922-uzgw-qyd3","summary":"OpenJDK: MBeanServer insufficient privilege restrictions (JMX, 8006446)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1486.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1486.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1486","reference_id":"","reference_type":"","scores":[{"value":"0.01171","scoring_system":"epss","scoring_elements":"0.78984","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1486"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=913014","reference_id":"913014","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=913014"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://security.gentoo.org/glsa/201406-32","reference_id":"GLSA-201406-32","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201406-32"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0273","reference_id":"RHSA-2013:0273","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0273"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0274","reference_id":"RHSA-2013:0274","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0274"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0275","reference_id":"RHSA-2013:0275","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0275"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0531","reference_id":"RHSA-2013:0531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0532","reference_id":"RHSA-2013:0532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0624","reference_id":"RHSA-2013:0624","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0624"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0625","reference_id":"RHSA-2013:0625","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0625"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0626","reference_id":"RHSA-2013:0626","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1735-1/","reference_id":"USN-1735-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1735-1/"}],"fixed_packages":[],"aliases":["CVE-2013-1486"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-n922-uzgw-qyd3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70120?format=json","vulnerability_id":"VCID-vwyb-1jyh-7kfu","summary":"JDK: unspecified vulnerability fixed in 6u41 and 7u15 (Deployment)","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1487.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1487.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1487","reference_id":"","reference_type":"","scores":[{"value":"0.03052","scoring_system":"epss","scoring_elements":"0.86922","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1487"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=913030","reference_id":"913030","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=913030"},{"reference_url":"https://security.gentoo.org/glsa/201401-30","reference_id":"GLSA-201401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0531","reference_id":"RHSA-2013:0531","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0531"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0532","reference_id":"RHSA-2013:0532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0532"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0625","reference_id":"RHSA-2013:0625","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0625"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:0626","reference_id":"RHSA-2013:0626","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:0626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1455","reference_id":"RHSA-2013:1455","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1455"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1456","reference_id":"RHSA-2013:1456","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1456"},{"reference_url":"https://usn.ubuntu.com/1735-1/","reference_id":"USN-1735-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1735-1/"}],"fixed_packages":[],"aliases":["CVE-2013-1487"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vwyb-1jyh-7kfu"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.41-1jpp.1%3Farch=el5_9"}