{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/103589?format=json","vulnerability_id":"VCID-3dxq-vw4d-jfhq","summary":"jboss-client: memory leakage in remote client transaction","aliases":[{"alias":"CVE-2022-0853"}],"fixed_packages":[],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/133814?format=json","purl":"pkg:rpm/redhat/eap7-wildfly-http-client@1.1.11-1.SP1_redhat_00001.1?arch=el7eap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-http-client@1.1.11-1.SP1_redhat_00001.1%3Farch=el7eap"},{"url":"http://public2.vulnerablecode.io/api/packages/133815?format=json","purl":"pkg:rpm/redhat/eap7-wildfly-http-client@1.1.11-1.SP1_redhat_00001.1?arch=el8eap","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/eap7-wildfly-http-client@1.1.11-1.SP1_redhat_00001.1%3Farch=el8eap"},{"url":"http://public2.vulnerablecode.io/api/packages/130639?format=json","purl":"pkg:rpm/redhat/rh-sso7@1-5?arch=el9sso","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"},{"vulnerability":"VCID-5kns-j1rv-9ybf"},{"vulnerability":"VCID-8fr2-v728-cfcc"},{"vulnerability":"VCID-8sqn-nkzx-euec"},{"vulnerability":"VCID-8ze1-r95u-xbg8"},{"vulnerability":"VCID-9evr-uk2w-ayg6"},{"vulnerability":"VCID-ag7u-zdts-2qb1"},{"vulnerability":"VCID-apmf-stq4-8udt"},{"vulnerability":"VCID-c4ms-cx82-n7bm"},{"vulnerability":"VCID-r9dc-6tk9-qkeh"},{"vulnerability":"VCID-tqvr-tetp-8ugb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7@1-5%3Farch=el9sso"},{"url":"http://public2.vulnerablecode.io/api/packages/130644?format=json","purl":"pkg:rpm/redhat/rh-sso7-javapackages-tools@6.0.0-7?arch=el9sso","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"},{"vulnerability":"VCID-5kns-j1rv-9ybf"},{"vulnerability":"VCID-8fr2-v728-cfcc"},{"vulnerability":"VCID-8sqn-nkzx-euec"},{"vulnerability":"VCID-8ze1-r95u-xbg8"},{"vulnerability":"VCID-9evr-uk2w-ayg6"},{"vulnerability":"VCID-ag7u-zdts-2qb1"},{"vulnerability":"VCID-apmf-stq4-8udt"},{"vulnerability":"VCID-c4ms-cx82-n7bm"},{"vulnerability":"VCID-tqvr-tetp-8ugb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-javapackages-tools@6.0.0-7%3Farch=el9sso"},{"url":"http://public2.vulnerablecode.io/api/packages/130638?format=json","purl":"pkg:rpm/redhat/rh-sso7-keycloak@18.0.3-1.redhat_00001.1?arch=el9sso","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"},{"vulnerability":"VCID-5kns-j1rv-9ybf"},{"vulnerability":"VCID-8fr2-v728-cfcc"},{"vulnerability":"VCID-8sqn-nkzx-euec"},{"vulnerability":"VCID-8ze1-r95u-xbg8"},{"vulnerability":"VCID-9evr-uk2w-ayg6"},{"vulnerability":"VCID-ag7u-zdts-2qb1"},{"vulnerability":"VCID-apmf-stq4-8udt"},{"vulnerability":"VCID-c4ms-cx82-n7bm"},{"vulnerability":"VCID-r9dc-6tk9-qkeh"},{"vulnerability":"VCID-tqvr-tetp-8ugb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.3-1.redhat_00001.1%3Farch=el9sso"},{"url":"http://public2.vulnerablecode.io/api/packages/130641?format=json","purl":"pkg:rpm/redhat/rh-sso7-keycloak@18.0.3-1.redhat_00001.1?arch=el8sso","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"},{"vulnerability":"VCID-5kns-j1rv-9ybf"},{"vulnerability":"VCID-8fr2-v728-cfcc"},{"vulnerability":"VCID-8sqn-nkzx-euec"},{"vulnerability":"VCID-8ze1-r95u-xbg8"},{"vulnerability":"VCID-9evr-uk2w-ayg6"},{"vulnerability":"VCID-ag7u-zdts-2qb1"},{"vulnerability":"VCID-apmf-stq4-8udt"},{"vulnerability":"VCID-c4ms-cx82-n7bm"},{"vulnerability":"VCID-r9dc-6tk9-qkeh"},{"vulnerability":"VCID-tqvr-tetp-8ugb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.3-1.redhat_00001.1%3Farch=el8sso"},{"url":"http://public2.vulnerablecode.io/api/packages/130642?format=json","purl":"pkg:rpm/redhat/rh-sso7-keycloak@18.0.3-1.redhat_00001.1?arch=el7sso","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3dxq-vw4d-jfhq"},{"vulnerability":"VCID-5kns-j1rv-9ybf"},{"vulnerability":"VCID-8fr2-v728-cfcc"},{"vulnerability":"VCID-8sqn-nkzx-euec"},{"vulnerability":"VCID-8ze1-r95u-xbg8"},{"vulnerability":"VCID-9evr-uk2w-ayg6"},{"vulnerability":"VCID-ag7u-zdts-2qb1"},{"vulnerability":"VCID-apmf-stq4-8udt"},{"vulnerability":"VCID-c4ms-cx82-n7bm"},{"vulnerability":"VCID-r9dc-6tk9-qkeh"},{"vulnerability":"VCID-tqvr-tetp-8ugb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-sso7-keycloak@18.0.3-1.redhat_00001.1%3Farch=el7sso"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0853.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0853.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0853","reference_id":"","reference_type":"","scores":[{"value":"0.01306","scoring_system":"epss","scoring_elements":"0.80119","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01306","scoring_system":"epss","scoring_elements":"0.80145","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01306","scoring_system":"epss","scoring_elements":"0.80149","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0853"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2060725","reference_id":"2060725","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2060725"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4918","reference_id":"RHSA-2022:4918","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4918"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4919","reference_id":"RHSA-2022:4919","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4919"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:4922","reference_id":"RHSA-2022:4922","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:4922"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7409","reference_id":"RHSA-2022:7409","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7409"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7410","reference_id":"RHSA-2022:7410","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7411","reference_id":"RHSA-2022:7411","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7411"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7417","reference_id":"RHSA-2022:7417","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7417"}],"weaknesses":[{"cwe_id":401,"name":"Missing Release of Memory after Effective Lifetime","description":"The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory."}],"exploits":[],"severity_range_score":"6.5 - 6.5","exploitability":"0.5","weighted_severity":"5.9","risk_score":3.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3dxq-vw4d-jfhq"}