Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-bexg-776h-6kax
Summary
Denial of Service Attacks on Apache CXF
The streaming XML parser in this package remote attackers to cause a denial of service (CPU and memory consumption) via crafted XML with a large number of elements, attributes, nested constructs, and possibly other vectors.
Aliases
0
alias CVE-2013-2160
1
alias GHSA-254q-rp36-v2m8
Fixed_packages
0
url pkg:maven/org.apache.cxf/apache-cxf@2.5.10
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.10
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.10
1
url pkg:maven/org.apache.cxf/apache-cxf@2.6.7
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.7
2
url pkg:maven/org.apache.cxf/apache-cxf@2.7.4
purl pkg:maven/org.apache.cxf/apache-cxf@2.7.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.7.4
3
url pkg:maven/org.apache.cxf/cxf-api@2.5.10
purl pkg:maven/org.apache.cxf/cxf-api@2.5.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.10
4
url pkg:maven/org.apache.cxf/cxf-api@2.6.7
purl pkg:maven/org.apache.cxf/cxf-api@2.6.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.7
5
url pkg:maven/org.apache.cxf/cxf-api@2.7.4
purl pkg:maven/org.apache.cxf/cxf-api@2.7.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.7.4
6
url pkg:maven/org.apache.cxf/cxf-parent@2.5.10
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.10
7
url pkg:maven/org.apache.cxf/cxf-parent@2.6.7
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.7
8
url pkg:maven/org.apache.cxf/cxf-parent@2.7.4
purl pkg:maven/org.apache.cxf/cxf-parent@2.7.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.7.4
9
url pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.5.10
purl pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.5.10
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.5.10
10
url pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.6.7
purl pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.6.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.6.7
11
url pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.7.4
purl pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.7.4
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.7.4
Affected_packages
0
url pkg:maven/org.apache.cxf/apache-cxf@2.5.0
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.0
1
url pkg:maven/org.apache.cxf/apache-cxf@2.5
purl pkg:maven/org.apache.cxf/apache-cxf@2.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5
2
url pkg:maven/org.apache.cxf/apache-cxf@2.5.1
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.1
3
url pkg:maven/org.apache.cxf/apache-cxf@2.5.2
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.2
4
url pkg:maven/org.apache.cxf/apache-cxf@2.5.3
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.3
5
url pkg:maven/org.apache.cxf/apache-cxf@2.5.4
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.4
6
url pkg:maven/org.apache.cxf/apache-cxf@2.5.5
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.5
7
url pkg:maven/org.apache.cxf/apache-cxf@2.5.6
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.6
8
url pkg:maven/org.apache.cxf/apache-cxf@2.5.7
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.7
9
url pkg:maven/org.apache.cxf/apache-cxf@2.5.8
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.8
10
url pkg:maven/org.apache.cxf/apache-cxf@2.5.9
purl pkg:maven/org.apache.cxf/apache-cxf@2.5.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.5.9
11
url pkg:maven/org.apache.cxf/apache-cxf@2.6.0
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.0
12
url pkg:maven/org.apache.cxf/apache-cxf@2.6
purl pkg:maven/org.apache.cxf/apache-cxf@2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6
13
url pkg:maven/org.apache.cxf/apache-cxf@2.6.1
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.1
14
url pkg:maven/org.apache.cxf/apache-cxf@2.6.2
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.2
15
url pkg:maven/org.apache.cxf/apache-cxf@2.6.3
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.3
16
url pkg:maven/org.apache.cxf/apache-cxf@2.6.4
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.4
17
url pkg:maven/org.apache.cxf/apache-cxf@2.6.5
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.5
18
url pkg:maven/org.apache.cxf/apache-cxf@2.6.6
purl pkg:maven/org.apache.cxf/apache-cxf@2.6.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.6.6
19
url pkg:maven/org.apache.cxf/apache-cxf@2.7.0
purl pkg:maven/org.apache.cxf/apache-cxf@2.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.7.0
20
url pkg:maven/org.apache.cxf/apache-cxf@2.7
purl pkg:maven/org.apache.cxf/apache-cxf@2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.7
21
url pkg:maven/org.apache.cxf/apache-cxf@2.7.1
purl pkg:maven/org.apache.cxf/apache-cxf@2.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.7.1
22
url pkg:maven/org.apache.cxf/apache-cxf@2.7.2
purl pkg:maven/org.apache.cxf/apache-cxf@2.7.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.7.2
23
url pkg:maven/org.apache.cxf/apache-cxf@2.7.3
purl pkg:maven/org.apache.cxf/apache-cxf@2.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-ttsv-cwyg-xkfq
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/apache-cxf@2.7.3
24
url pkg:maven/org.apache.cxf/cxf-api@2.5-alpha0
purl pkg:maven/org.apache.cxf/cxf-api@2.5-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5-alpha0
25
url pkg:maven/org.apache.cxf/cxf-api@2.5.0
purl pkg:maven/org.apache.cxf/cxf-api@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.0
26
url pkg:maven/org.apache.cxf/cxf-api@2.5.1
purl pkg:maven/org.apache.cxf/cxf-api@2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.1
27
url pkg:maven/org.apache.cxf/cxf-api@2.5.2
purl pkg:maven/org.apache.cxf/cxf-api@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.2
28
url pkg:maven/org.apache.cxf/cxf-api@2.5.3
purl pkg:maven/org.apache.cxf/cxf-api@2.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.3
29
url pkg:maven/org.apache.cxf/cxf-api@2.5.4
purl pkg:maven/org.apache.cxf/cxf-api@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.4
30
url pkg:maven/org.apache.cxf/cxf-api@2.5.5
purl pkg:maven/org.apache.cxf/cxf-api@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.5
31
url pkg:maven/org.apache.cxf/cxf-api@2.5.6
purl pkg:maven/org.apache.cxf/cxf-api@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.6
32
url pkg:maven/org.apache.cxf/cxf-api@2.5.7
purl pkg:maven/org.apache.cxf/cxf-api@2.5.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.7
33
url pkg:maven/org.apache.cxf/cxf-api@2.5.8
purl pkg:maven/org.apache.cxf/cxf-api@2.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.8
34
url pkg:maven/org.apache.cxf/cxf-api@2.5.9
purl pkg:maven/org.apache.cxf/cxf-api@2.5.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.5.9
35
url pkg:maven/org.apache.cxf/cxf-api@2.6-alpha0
purl pkg:maven/org.apache.cxf/cxf-api@2.6-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6-alpha0
36
url pkg:maven/org.apache.cxf/cxf-api@2.6.0
purl pkg:maven/org.apache.cxf/cxf-api@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.0
37
url pkg:maven/org.apache.cxf/cxf-api@2.6.1
purl pkg:maven/org.apache.cxf/cxf-api@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-fh3r-vfqx-8ya2
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.1
38
url pkg:maven/org.apache.cxf/cxf-api@2.6.2
purl pkg:maven/org.apache.cxf/cxf-api@2.6.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.2
39
url pkg:maven/org.apache.cxf/cxf-api@2.6.3
purl pkg:maven/org.apache.cxf/cxf-api@2.6.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.3
40
url pkg:maven/org.apache.cxf/cxf-api@2.6.4
purl pkg:maven/org.apache.cxf/cxf-api@2.6.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.4
41
url pkg:maven/org.apache.cxf/cxf-api@2.6.5
purl pkg:maven/org.apache.cxf/cxf-api@2.6.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.5
42
url pkg:maven/org.apache.cxf/cxf-api@2.6.6
purl pkg:maven/org.apache.cxf/cxf-api@2.6.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.6.6
43
url pkg:maven/org.apache.cxf/cxf-api@2.7-alpha0
purl pkg:maven/org.apache.cxf/cxf-api@2.7-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.7-alpha0
44
url pkg:maven/org.apache.cxf/cxf-api@2.7.0
purl pkg:maven/org.apache.cxf/cxf-api@2.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.7.0
45
url pkg:maven/org.apache.cxf/cxf-api@2.7.1
purl pkg:maven/org.apache.cxf/cxf-api@2.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.7.1
46
url pkg:maven/org.apache.cxf/cxf-api@2.7.2
purl pkg:maven/org.apache.cxf/cxf-api@2.7.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.7.2
47
url pkg:maven/org.apache.cxf/cxf-api@2.7.3
purl pkg:maven/org.apache.cxf/cxf-api@2.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-api@2.7.3
48
url pkg:maven/org.apache.cxf/cxf-parent@2.5-alpha0
purl pkg:maven/org.apache.cxf/cxf-parent@2.5-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5-alpha0
49
url pkg:maven/org.apache.cxf/cxf-parent@2.5.0
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.0
50
url pkg:maven/org.apache.cxf/cxf-parent@2.5.1
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.1
51
url pkg:maven/org.apache.cxf/cxf-parent@2.5.2
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.2
52
url pkg:maven/org.apache.cxf/cxf-parent@2.5.3
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.3
53
url pkg:maven/org.apache.cxf/cxf-parent@2.5.4
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.4
54
url pkg:maven/org.apache.cxf/cxf-parent@2.5.5
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.5
55
url pkg:maven/org.apache.cxf/cxf-parent@2.5.6
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.6
56
url pkg:maven/org.apache.cxf/cxf-parent@2.5.7
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.7
57
url pkg:maven/org.apache.cxf/cxf-parent@2.5.8
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.8
58
url pkg:maven/org.apache.cxf/cxf-parent@2.5.9
purl pkg:maven/org.apache.cxf/cxf-parent@2.5.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.5.9
59
url pkg:maven/org.apache.cxf/cxf-parent@2.6-alpha0
purl pkg:maven/org.apache.cxf/cxf-parent@2.6-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6-alpha0
60
url pkg:maven/org.apache.cxf/cxf-parent@2.6.0
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.0
61
url pkg:maven/org.apache.cxf/cxf-parent@2.6.1
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.1
62
url pkg:maven/org.apache.cxf/cxf-parent@2.6.2
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.2
63
url pkg:maven/org.apache.cxf/cxf-parent@2.6.3
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.3
64
url pkg:maven/org.apache.cxf/cxf-parent@2.6.4
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.4
65
url pkg:maven/org.apache.cxf/cxf-parent@2.6.5
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.5
66
url pkg:maven/org.apache.cxf/cxf-parent@2.6.6
purl pkg:maven/org.apache.cxf/cxf-parent@2.6.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.6.6
67
url pkg:maven/org.apache.cxf/cxf-parent@2.7-alpha0
purl pkg:maven/org.apache.cxf/cxf-parent@2.7-alpha0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.7-alpha0
68
url pkg:maven/org.apache.cxf/cxf-parent@2.7.0
purl pkg:maven/org.apache.cxf/cxf-parent@2.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.7.0
69
url pkg:maven/org.apache.cxf/cxf-parent@2.7.1
purl pkg:maven/org.apache.cxf/cxf-parent@2.7.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.7.1
70
url pkg:maven/org.apache.cxf/cxf-parent@2.7.2
purl pkg:maven/org.apache.cxf/cxf-parent@2.7.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.7.2
71
url pkg:maven/org.apache.cxf/cxf-parent@2.7.3
purl pkg:maven/org.apache.cxf/cxf-parent@2.7.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-parent@2.7.3
72
url pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.5.0
purl pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.5.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-jxw2-tcg5-m3hd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.5.0
73
url pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.6.0
purl pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.6.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-cyrs-jzsa-bba4
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.6.0
74
url pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.7.0
purl pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.7.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bexg-776h-6kax
1
vulnerability VCID-cyrs-jzsa-bba4
2
vulnerability VCID-jxw2-tcg5-m3hd
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-frontend-jaxrs@2.7.0
References
0
reference_url http://jira.codehaus.org/browse/WSTX-285
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jira.codehaus.org/browse/WSTX-285
1
reference_url http://jira.codehaus.org/browse/WSTX-287
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://jira.codehaus.org/browse/WSTX-287
2
reference_url http://rhn.redhat.com/errata/RHSA-2013-1028.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-1028.html
3
reference_url http://rhn.redhat.com/errata/RHSA-2013-1437.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-1437.html
4
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2160
reference_id
reference_type
scores
0
value 0.12253
scoring_system epss
scoring_elements 0.9397
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2160
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=929197
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=929197
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2160
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-2160
7
reference_url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E
8
reference_url https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E
9
reference_url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E
10
reference_url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E
11
reference_url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E
12
reference_url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-2160
reference_id CVE-2013-2160
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-2160
14
reference_url http://cxf.apache.org/security-advisories.data/CVE-2013-2160.txt.asc
reference_id CVE-2013-2160;OSVDB-95011
reference_type exploit
scores
url http://cxf.apache.org/security-advisories.data/CVE-2013-2160.txt.asc
15
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/26710.txt
reference_id CVE-2013-2160;OSVDB-95011
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/26710.txt
16
reference_url https://cxf.apache.org/security-advisories.data/CVE-2013-2160.txt.asc
reference_id CVE-2013-2160.TXT.ASC
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://cxf.apache.org/security-advisories.data/CVE-2013-2160.txt.asc
17
reference_url https://github.com/advisories/GHSA-254q-rp36-v2m8
reference_id GHSA-254q-rp36-v2m8
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-254q-rp36-v2m8
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 399
name Resource Management Errors
description Weaknesses in this category are related to improper management of system resources.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
3
cwe_id 112
name Missing XML Validation
description The product accepts XML from an untrusted source but does not validate the XML against the proper schema.
Exploits
0
date_added 2013-07-09
description Apache CXF < 2.5.10/2.6.7/2.7.4 - Denial of Service
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2013-07-09
exploit_type dos
platform multiple
source_date_updated 2013-07-09
data_source Exploit-DB
source_url http://cxf.apache.org/security-advisories.data/CVE-2013-2160.txt.asc
Severity_range_score4.0 - 6.9
Exploitability0.5
Weighted_severity6.2
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-bexg-776h-6kax