{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/109995?format=json","vulnerability_id":"VCID-rkzz-9b8e-efaq","summary":"Neo4j Graph apoc plugins Partial Path Traversal Vulnerability\n### Impact\nA partial Directory Traversal Vulnerability found in `apoc.log.stream` function of apoc plugins in Neo4j Graph database. \nThis issue allows a malicious actor to potentially break out of the expected directory. The impact is limited to sibling directories. For example, `userControlled.getCanonicalPath().startsWith(\"/usr/out\")` will allow an attacker to access a directory with a name like `/usr/outnot`.\n\n### Patches\nThe users should aim to use the latest released version compatible with their Neo4j version. The minimum versions containing patch for this vulnerability are 4.4.0.8 and 4.3.0.7\n\n### Workarounds\nIf you cannot upgrade the library, you can control the [allowlist of the functions](https://neo4j.com/docs/operations-manual/current/reference/configuration-settings/#config_dbms.security.procedures.allowlist) that can be used in your system\n\n\n### For more information\nIf you have any questions or comments about this advisory:\n- Open an issue in [neo4j-apoc-procedures](https://github.com/neo4j-contrib/neo4j-apoc-procedures)\n- Email us at [security@neo4j.com](mailto:security@neo4j.com)\n\n### Credits\nWe want to publicly recognise the contribution of [Jonathan Leitschuh](https://github.com/JLLeitschuh) for reporting this issue.","aliases":[{"alias":"CVE-2022-37423"},{"alias":"GHSA-78f9-745f-278p"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/148125?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/148124?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.8"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/229267?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@1.0.0-RC1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@1.0.0-RC1"},{"url":"http://public2.vulnerablecode.io/api/packages/229268?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@1.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@1.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/229269?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@1.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@1.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/229270?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.0.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.0.4.1"},{"url":"http://public2.vulnerablecode.io/api/packages/229271?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.0.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.0.4.2"},{"url":"http://public2.vulnerablecode.io/api/packages/229272?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.0.8.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.0.8.4"},{"url":"http://public2.vulnerablecode.io/api/packages/229273?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.0.8.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.0.8.5"},{"url":"http://public2.vulnerablecode.io/api/packages/229274?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/229275?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/229276?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/229277?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/229278?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.2.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.2.5"},{"url":"http://public2.vulnerablecode.io/api/packages/229279?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.3.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.3.7"},{"url":"http://public2.vulnerablecode.io/api/packages/229280?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.3.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/229281?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.1.3.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.1.3.9"},{"url":"http://public2.vulnerablecode.io/api/packages/229282?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.2.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.2.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/229283?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.2.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.2.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/229284?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.2.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.2.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/229285?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.2.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.2.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/229286?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.3.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.3.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/229287?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.3.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.3.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/229288?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.3.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/229289?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.3.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.3.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/229290?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.4.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.4.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/229291?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.4.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.4.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/229292?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.4.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rb51-4rwe-jkg7"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.4.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/57211?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.4.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.4.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/559130?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.4.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.4.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/559131?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.4.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.4.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/559132?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/559133?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/559134?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/559135?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/559136?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/559137?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/559138?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/559139?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/559140?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/559141?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.13"},{"url":"http://public2.vulnerablecode.io/api/packages/559142?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.14","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.14"},{"url":"http://public2.vulnerablecode.io/api/packages/559143?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.15"},{"url":"http://public2.vulnerablecode.io/api/packages/60830?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.17","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.17"},{"url":"http://public2.vulnerablecode.io/api/packages/601402?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.18","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.18"},{"url":"http://public2.vulnerablecode.io/api/packages/601403?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.19","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.19"},{"url":"http://public2.vulnerablecode.io/api/packages/601404?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.20","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.20"},{"url":"http://public2.vulnerablecode.io/api/packages/601405?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@3.5.0.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@3.5.0.21"},{"url":"http://public2.vulnerablecode.io/api/packages/601406?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0-rc01","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0-rc01"},{"url":"http://public2.vulnerablecode.io/api/packages/601407?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/601408?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/601409?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/601410?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/601411?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/601412?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/601413?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/601414?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.9"},{"url":"http://public2.vulnerablecode.io/api/packages/601415?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/601416?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/601417?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/601418?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.13"},{"url":"http://public2.vulnerablecode.io/api/packages/601419?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.14","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.14"},{"url":"http://public2.vulnerablecode.io/api/packages/601420?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.15"},{"url":"http://public2.vulnerablecode.io/api/packages/601421?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.16"},{"url":"http://public2.vulnerablecode.io/api/packages/601422?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.17","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.17"},{"url":"http://public2.vulnerablecode.io/api/packages/601423?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.0.0.18","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.0.0.18"},{"url":"http://public2.vulnerablecode.io/api/packages/601424?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/601425?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/601426?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/601427?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/601428?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/601429?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/601430?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/601431?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/601432?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/601433?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.9"},{"url":"http://public2.vulnerablecode.io/api/packages/601434?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/601435?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/601436?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.1.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.1.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/60827?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/559144?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/559145?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/559146?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/559147?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/559148?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/559149?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/559150?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/559151?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/559152?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.9"},{"url":"http://public2.vulnerablecode.io/api/packages/559153?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/559154?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/559155?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.2.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.2.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/60828?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/559156?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/559157?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/512025?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/60832?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/601437?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/601438?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.3.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.3.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/60829?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-mbp8-7nj5-e7b4"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/60833?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/601439?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/601440?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/601441?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/601442?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/601443?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/601444?format=json","purl":"pkg:maven/org.neo4j.procedure/apoc@4.4.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ep5-3qps-r3fs"},{"vulnerability":"VCID-6cf3-kvav-1ffb"},{"vulnerability":"VCID-rkzz-9b8e-efaq"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.neo4j.procedure/apoc@4.4.0.7"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37423","reference_id":"","reference_type":"","scores":[{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49168","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49222","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.4924","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00256","scoring_system":"epss","scoring_elements":"0.49229","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-37423"},{"reference_url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures"},{"reference_url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/commit/d2f415c6f703bbc2cda4a753928821ff15d5c620","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/commit/d2f415c6f703bbc2cda4a753928821ff15d5c620"},{"reference_url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/commit/fe9f8c77269f5a742585c1d62324eb70755de510","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/commit/fe9f8c77269f5a742585c1d62324eb70755de510"},{"reference_url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/pull/3080","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/pull/3080"},{"reference_url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/security/advisories/GHSA-78f9-745f-278p","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/neo4j-contrib/neo4j-apoc-procedures/security/advisories/GHSA-78f9-745f-278p"},{"reference_url":"https://neo4j.com/docs/aura/platform/apoc","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://neo4j.com/docs/aura/platform/apoc"},{"reference_url":"https://neo4j.com/docs/aura/platform/apoc/","reference_id":"","reference_type":"","scores":[],"url":"https://neo4j.com/docs/aura/platform/apoc/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-37423","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-37423"},{"reference_url":"https://github.com/advisories/GHSA-78f9-745f-278p","reference_id":"GHSA-78f9-745f-278p","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-78f9-745f-278p"}],"weaknesses":[{"cwe_id":22,"name":"Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","description":"The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."}],"exploits":[],"severity_range_score":"4.0 - 6.9","exploitability":"0.5","weighted_severity":"6.2","risk_score":3.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rkzz-9b8e-efaq"}