{"url":"http://public2.vulnerablecode.io/api/packages/342564?format=json","purl":"pkg:rpm/redhat/eap7-hibernate@5.3.20-1.Final_redhat_00001.1?arch=el6eap","type":"rpm","namespace":"redhat","name":"eap7-hibernate","version":"5.3.20-1.Final_redhat_00001.1","qualifiers":{"arch":"el6eap"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207725?format=json","vulnerability_id":"VCID-5hqt-avvb-j7ay","summary":"Denial of service in Undertow","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27782.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27782.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27782","reference_id":"","reference_type":"","scores":[{"value":"0.00182","scoring_system":"epss","scoring_elements":"0.39708","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27782"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1901304","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1901304"},{"reference_url":"https://github.com/undertow-io/undertow/pull/997/commits/98a9ab7f2d7fe7a7254eaf17d47816c452169c90","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/undertow-io/undertow/pull/997/commits/98a9ab7f2d7fe7a7254eaf17d47816c452169c90"},{"reference_url":"https://issues.redhat.com/browse/UNDERTOW-1813","reference_id":"","reference_type":"","scores":[],"url":"https://issues.redhat.com/browse/UNDERTOW-1813"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27782","reference_id":"CVE-2020-27782","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27782"},{"reference_url":"https://github.com/advisories/GHSA-rhcw-wjcm-9h6g","reference_id":"GHSA-rhcw-wjcm-9h6g","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rhcw-wjcm-9h6g"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0246","reference_id":"RHSA-2021:0246","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0247","reference_id":"RHSA-2021:0247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0248","reference_id":"RHSA-2021:0248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0250","reference_id":"RHSA-2021:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0295","reference_id":"RHSA-2021:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0327","reference_id":"RHSA-2021:0327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3205","reference_id":"RHSA-2021:3205","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3205"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3207","reference_id":"RHSA-2021:3207","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3207"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3425","reference_id":"RHSA-2021:3425","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3425"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:5134","reference_id":"RHSA-2021:5134","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:5134"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9582","reference_id":"RHSA-2025:9582","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:9582"}],"fixed_packages":[],"aliases":["CVE-2020-27782","GHSA-rhcw-wjcm-9h6g"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5hqt-avvb-j7ay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210196?format=json","vulnerability_id":"VCID-fd9g-hxyb-zfa9","summary":"Uncontrolled Resource Consumption in WildFly","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25689.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25689.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25689","reference_id":"","reference_type":"","scores":[{"value":"0.00238","scoring_system":"epss","scoring_elements":"0.471","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25689"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25689","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-25689"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201123-0006/","reference_id":"","reference_type":"","scores":[],"url":"https://security.netapp.com/advisory/ntap-20201123-0006/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1893070","reference_id":"1893070","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1893070"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25689","reference_id":"CVE-2020-25689","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25689"},{"reference_url":"https://github.com/advisories/GHSA-97hp-6q9g-5cw2","reference_id":"GHSA-97hp-6q9g-5cw2","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-97hp-6q9g-5cw2"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0246","reference_id":"RHSA-2021:0246","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0247","reference_id":"RHSA-2021:0247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0248","reference_id":"RHSA-2021:0248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0250","reference_id":"RHSA-2021:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0295","reference_id":"RHSA-2021:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0327","reference_id":"RHSA-2021:0327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5532","reference_id":"RHSA-2022:5532","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5532"}],"fixed_packages":[],"aliases":["CVE-2020-25689","GHSA-97hp-6q9g-5cw2"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fd9g-hxyb-zfa9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210254?format=json","vulnerability_id":"VCID-gf5n-ny6m-sbae","summary":"Wildfly has a memory leak vulnerability","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27822.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27822.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27822","reference_id":"","reference_type":"","scores":[{"value":"0.00339","scoring_system":"epss","scoring_elements":"0.57046","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-27822"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1904060","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1904060"},{"reference_url":"https://github.com/wildfly/wildfly/commit/67ef84fd7aab789a535b137e5e506fd29d212455","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/wildfly/wildfly/commit/67ef84fd7aab789a535b137e5e506fd29d212455"},{"reference_url":"https://github.com/wildfly/wildfly/commit/c8b02f6a0605f4e2abfeaf21d28b7fe76171004b","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/wildfly/wildfly/commit/c8b02f6a0605f4e2abfeaf21d28b7fe76171004b"},{"reference_url":"https://github.com/wildfly/wildfly/pull/13749","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/wildfly/wildfly/pull/13749"},{"reference_url":"https://github.com/wildfly/wildfly/pull/13779","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/wildfly/wildfly/pull/13779"},{"reference_url":"https://issues.redhat.com/browse/WFLY-14094","reference_id":"","reference_type":"","scores":[],"url":"https://issues.redhat.com/browse/WFLY-14094"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27822","reference_id":"CVE-2020-27822","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27822"},{"reference_url":"https://github.com/advisories/GHSA-qx3p-9mmp-4v8h","reference_id":"GHSA-qx3p-9mmp-4v8h","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qx3p-9mmp-4v8h"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0246","reference_id":"RHSA-2021:0246","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0247","reference_id":"RHSA-2021:0247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0248","reference_id":"RHSA-2021:0248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0250","reference_id":"RHSA-2021:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0295","reference_id":"RHSA-2021:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0317","reference_id":"RHSA-2021:0317","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0317"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0327","reference_id":"RHSA-2021:0327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0327"}],"fixed_packages":[],"aliases":["CVE-2020-27822","GHSA-qx3p-9mmp-4v8h"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gf5n-ny6m-sbae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208160?format=json","vulnerability_id":"VCID-ja7m-9cyv-p7cd","summary":"Wildfly logs plaintext passwords","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25640.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25640.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25640","reference_id":"","reference_type":"","scores":[{"value":"0.00354","scoring_system":"epss","scoring_elements":"0.58128","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25640"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1881637","reference_id":"","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1881637"},{"reference_url":"https://github.com/amqphub/amqp-10-resource-adapter/issues/13","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/amqphub/amqp-10-resource-adapter/issues/13"},{"reference_url":"https://security.netapp.com/advisory/ntap-20201210-0001/","reference_id":"","reference_type":"","scores":[],"url":"https://security.netapp.com/advisory/ntap-20201210-0001/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25640","reference_id":"CVE-2020-25640","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25640"},{"reference_url":"https://github.com/advisories/GHSA-jw3v-5ch2-wfmm","reference_id":"GHSA-jw3v-5ch2-wfmm","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jw3v-5ch2-wfmm"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0246","reference_id":"RHSA-2021:0246","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0247","reference_id":"RHSA-2021:0247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0248","reference_id":"RHSA-2021:0248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0250","reference_id":"RHSA-2021:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0295","reference_id":"RHSA-2021:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0327","reference_id":"RHSA-2021:0327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3140","reference_id":"RHSA-2021:3140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3140"}],"fixed_packages":[],"aliases":["CVE-2020-25640","GHSA-jw3v-5ch2-wfmm"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ja7m-9cyv-p7cd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/7727?format=json","vulnerability_id":"VCID-ks8v-spnp-qbd5","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13956.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13956.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13956","reference_id":"","reference_type":"","scores":[{"value":"0.00505","scoring_system":"epss","scoring_elements":"0.6663","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-13956"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13956","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13956"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1886587","reference_id":"1886587","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1886587"},{"reference_url":"https://security.archlinux.org/AVG-1863","reference_id":"AVG-1863","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1863"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0084","reference_id":"RHSA-2021:0084","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0084"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0246","reference_id":"RHSA-2021:0246","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0247","reference_id":"RHSA-2021:0247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0248","reference_id":"RHSA-2021:0248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0250","reference_id":"RHSA-2021:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0327","reference_id":"RHSA-2021:0327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0603","reference_id":"RHSA-2021:0603","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0603"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0811","reference_id":"RHSA-2021:0811","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0811"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1044","reference_id":"RHSA-2021:1044","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1044"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3140","reference_id":"RHSA-2021:3140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3140"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3700","reference_id":"RHSA-2021:3700","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3700"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4100","reference_id":"RHSA-2021:4100","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4100"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0722","reference_id":"RHSA-2022:0722","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0722"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1860","reference_id":"RHSA-2022:1860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1860"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1861","reference_id":"RHSA-2022:1861","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:3954","reference_id":"RHSA-2023:3954","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:3954"},{"reference_url":"https://usn.ubuntu.com/USN-5239-1/","reference_id":"USN-USN-5239-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-5239-1/"}],"fixed_packages":[],"aliases":["CVE-2020-13956"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ks8v-spnp-qbd5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207900?format=json","vulnerability_id":"VCID-kzsn-ccve-m7df","summary":"A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this vulnerability is to data confidentiality.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25633.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25633.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25633","reference_id":"","reference_type":"","scores":[{"value":"0.00193","scoring_system":"epss","scoring_elements":"0.4118","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25633"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25633","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25633"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014983","reference_id":"1014983","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014983"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879042","reference_id":"1879042","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1879042"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970585","reference_id":"970585","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0246","reference_id":"RHSA-2021:0246","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0246"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0247","reference_id":"RHSA-2021:0247","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0247"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0248","reference_id":"RHSA-2021:0248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0250","reference_id":"RHSA-2021:0250","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0250"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0295","reference_id":"RHSA-2021:0295","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0295"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:0327","reference_id":"RHSA-2021:0327","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:0327"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1004","reference_id":"RHSA-2021:1004","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1004"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1313","reference_id":"RHSA-2021:1313","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1313"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2858","reference_id":"RHSA-2021:2858","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2858"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:3140","reference_id":"RHSA-2021:3140","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:3140"},{"reference_url":"https://usn.ubuntu.com/7351-1/","reference_id":"USN-7351-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7351-1/"},{"reference_url":"https://usn.ubuntu.com/7630-1/","reference_id":"USN-7630-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7630-1/"}],"fixed_packages":[],"aliases":["CVE-2020-25633"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kzsn-ccve-m7df"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-hibernate@5.3.20-1.Final_redhat_00001.1%3Farch=el6eap"}