{"url":"http://public2.vulnerablecode.io/api/packages/52169?format=json","purl":"pkg:maven/org.jboss.weld/weld-core@3.0.0.Alpha3","type":"maven","namespace":"org.jboss.weld","name":"weld-core","version":"3.0.0.Alpha3","qualifiers":{},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/37808?format=json","vulnerability_id":"VCID-rhqx-ze7c-53bc","summary":"Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition)\nRace condition in JBoss Weld Alpha3 allows remote attackers to obtain information from a previous conversation via vectors related to a stale thread state.","references":[{"reference_url":"https://bugzilla.redhat.com/CVE-2014-8122","reference_id":"CVE-2014-8122","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/CVE-2014-8122"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/52168?format=json","purl":"pkg:maven/org.jboss.weld/weld-core@2.2.8.Final","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.weld/weld-core@2.2.8.Final"},{"url":"http://public2.vulnerablecode.io/api/packages/52169?format=json","purl":"pkg:maven/org.jboss.weld/weld-core@3.0.0.Alpha3","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.weld/weld-core@3.0.0.Alpha3"}],"aliases":["CVE-2014-8122"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rhqx-ze7c-53bc"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.jboss.weld/weld-core@3.0.0.Alpha3"}