Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-qz9w-sb8r-r3cq

Summary The Aerospike Java client is a Java application that implements a network protocol to communicate with an Aerospike server. Prior to versions 7.0.0, 6.2.0, 5.2.0, and 4.5.0 some of the messages received from the server contain Java objects that the client deserializes when it encounters them without further validation. Attackers that manage to trick clients into communicating with a malicious server can include especially crafted objects in its responses that, once deserialized by the client, force it to execute arbitrary code. This can be abused to take control of the machine the client is running on. Versions 7.0.0, 6.2.0, 5.2.0, and 4.5.0 contain a patch for this issue.

Aliases

alias	CVE-2023-36480

alias	GHSA-jj95-55cr-9597

Fixed_packages

url	pkg:maven/com.aerospike/aerospike-client@4.5.0
purl	pkg:maven/com.aerospike/aerospike-client@4.5.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.5.0

url	pkg:maven/com.aerospike/aerospike-client@5.2.0
purl	pkg:maven/com.aerospike/aerospike-client@5.2.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.2.0

url	pkg:maven/com.aerospike/aerospike-client@6.2.0
purl	pkg:maven/com.aerospike/aerospike-client@6.2.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.2.0

Affected_packages

url pkg:maven/com.aerospike/aerospike-client@3.0.20

purl pkg:maven/com.aerospike/aerospike-client@3.0.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.20

url pkg:maven/com.aerospike/aerospike-client@3.0.22

purl pkg:maven/com.aerospike/aerospike-client@3.0.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.22

url pkg:maven/com.aerospike/aerospike-client@3.0.23

purl pkg:maven/com.aerospike/aerospike-client@3.0.23

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.23

url pkg:maven/com.aerospike/aerospike-client@3.0.24

purl pkg:maven/com.aerospike/aerospike-client@3.0.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.24

url pkg:maven/com.aerospike/aerospike-client@3.0.25

purl pkg:maven/com.aerospike/aerospike-client@3.0.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.25

url pkg:maven/com.aerospike/aerospike-client@3.0.26

purl pkg:maven/com.aerospike/aerospike-client@3.0.26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.26

url pkg:maven/com.aerospike/aerospike-client@3.0.27

purl pkg:maven/com.aerospike/aerospike-client@3.0.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.27

url pkg:maven/com.aerospike/aerospike-client@3.0.28

purl pkg:maven/com.aerospike/aerospike-client@3.0.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.28

url pkg:maven/com.aerospike/aerospike-client@3.0.29

purl pkg:maven/com.aerospike/aerospike-client@3.0.29

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.29

url pkg:maven/com.aerospike/aerospike-client@3.0.30

purl pkg:maven/com.aerospike/aerospike-client@3.0.30

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.30

url pkg:maven/com.aerospike/aerospike-client@3.0.31

purl pkg:maven/com.aerospike/aerospike-client@3.0.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.31

url pkg:maven/com.aerospike/aerospike-client@3.0.32

purl pkg:maven/com.aerospike/aerospike-client@3.0.32

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.32

url pkg:maven/com.aerospike/aerospike-client@3.0.33

purl pkg:maven/com.aerospike/aerospike-client@3.0.33

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.33

url pkg:maven/com.aerospike/aerospike-client@3.0.34

purl pkg:maven/com.aerospike/aerospike-client@3.0.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.34

url pkg:maven/com.aerospike/aerospike-client@3.0.35

purl pkg:maven/com.aerospike/aerospike-client@3.0.35

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.0.35

url pkg:maven/com.aerospike/aerospike-client@3.1.0

purl pkg:maven/com.aerospike/aerospike-client@3.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.0

url pkg:maven/com.aerospike/aerospike-client@3.1.1

purl pkg:maven/com.aerospike/aerospike-client@3.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.1

url pkg:maven/com.aerospike/aerospike-client@3.1.2

purl pkg:maven/com.aerospike/aerospike-client@3.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.2

url pkg:maven/com.aerospike/aerospike-client@3.1.3

purl pkg:maven/com.aerospike/aerospike-client@3.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.3

url pkg:maven/com.aerospike/aerospike-client@3.1.4

purl pkg:maven/com.aerospike/aerospike-client@3.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.4

url pkg:maven/com.aerospike/aerospike-client@3.1.5

purl pkg:maven/com.aerospike/aerospike-client@3.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.5

url pkg:maven/com.aerospike/aerospike-client@3.1.6

purl pkg:maven/com.aerospike/aerospike-client@3.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.6

url pkg:maven/com.aerospike/aerospike-client@3.1.7

purl pkg:maven/com.aerospike/aerospike-client@3.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.7

url pkg:maven/com.aerospike/aerospike-client@3.1.8

purl pkg:maven/com.aerospike/aerospike-client@3.1.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.8

url pkg:maven/com.aerospike/aerospike-client@3.1.9

purl pkg:maven/com.aerospike/aerospike-client@3.1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.1.9

url pkg:maven/com.aerospike/aerospike-client@3.2.0

purl pkg:maven/com.aerospike/aerospike-client@3.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.2.0

url pkg:maven/com.aerospike/aerospike-client@3.2.1

purl pkg:maven/com.aerospike/aerospike-client@3.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.2.1

url pkg:maven/com.aerospike/aerospike-client@3.2.2

purl pkg:maven/com.aerospike/aerospike-client@3.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.2.2

url pkg:maven/com.aerospike/aerospike-client@3.2.3

purl pkg:maven/com.aerospike/aerospike-client@3.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.2.3

url pkg:maven/com.aerospike/aerospike-client@3.2.4

purl pkg:maven/com.aerospike/aerospike-client@3.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.2.4

url pkg:maven/com.aerospike/aerospike-client@3.2.5

purl pkg:maven/com.aerospike/aerospike-client@3.2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.2.5

url pkg:maven/com.aerospike/aerospike-client@3.3.0

purl pkg:maven/com.aerospike/aerospike-client@3.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.3.0

url pkg:maven/com.aerospike/aerospike-client@3.3.1

purl pkg:maven/com.aerospike/aerospike-client@3.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.3.1

url pkg:maven/com.aerospike/aerospike-client@3.3.2

purl pkg:maven/com.aerospike/aerospike-client@3.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.3.2

url pkg:maven/com.aerospike/aerospike-client@3.3.3

purl pkg:maven/com.aerospike/aerospike-client@3.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.3.3

url pkg:maven/com.aerospike/aerospike-client@3.3.4

purl pkg:maven/com.aerospike/aerospike-client@3.3.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@3.3.4

url pkg:maven/com.aerospike/aerospike-client@4.0.0

purl pkg:maven/com.aerospike/aerospike-client@4.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.0

url pkg:maven/com.aerospike/aerospike-client@4.0.1

purl pkg:maven/com.aerospike/aerospike-client@4.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.1

url pkg:maven/com.aerospike/aerospike-client@4.0.2

purl pkg:maven/com.aerospike/aerospike-client@4.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.2

url pkg:maven/com.aerospike/aerospike-client@4.0.3

purl pkg:maven/com.aerospike/aerospike-client@4.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.3

url pkg:maven/com.aerospike/aerospike-client@4.0.4

purl pkg:maven/com.aerospike/aerospike-client@4.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.4

url pkg:maven/com.aerospike/aerospike-client@4.0.5

purl pkg:maven/com.aerospike/aerospike-client@4.0.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.5

url pkg:maven/com.aerospike/aerospike-client@4.0.6

purl pkg:maven/com.aerospike/aerospike-client@4.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.6

url pkg:maven/com.aerospike/aerospike-client@4.0.7

purl pkg:maven/com.aerospike/aerospike-client@4.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.7

url pkg:maven/com.aerospike/aerospike-client@4.0.8

purl pkg:maven/com.aerospike/aerospike-client@4.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.0.8

url pkg:maven/com.aerospike/aerospike-client@4.1.0

purl pkg:maven/com.aerospike/aerospike-client@4.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.0

url pkg:maven/com.aerospike/aerospike-client@4.1.1

purl pkg:maven/com.aerospike/aerospike-client@4.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.1

url pkg:maven/com.aerospike/aerospike-client@4.1.2

purl pkg:maven/com.aerospike/aerospike-client@4.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.2

url pkg:maven/com.aerospike/aerospike-client@4.1.3

purl pkg:maven/com.aerospike/aerospike-client@4.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.3

url pkg:maven/com.aerospike/aerospike-client@4.1.4

purl pkg:maven/com.aerospike/aerospike-client@4.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.4

url pkg:maven/com.aerospike/aerospike-client@4.1.5

purl pkg:maven/com.aerospike/aerospike-client@4.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.5

url pkg:maven/com.aerospike/aerospike-client@4.1.6

purl pkg:maven/com.aerospike/aerospike-client@4.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.6

url pkg:maven/com.aerospike/aerospike-client@4.1.7

purl pkg:maven/com.aerospike/aerospike-client@4.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.7

url pkg:maven/com.aerospike/aerospike-client@4.1.8

purl pkg:maven/com.aerospike/aerospike-client@4.1.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.8

url pkg:maven/com.aerospike/aerospike-client@4.1.9

purl pkg:maven/com.aerospike/aerospike-client@4.1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.9

url pkg:maven/com.aerospike/aerospike-client@4.1.10

purl pkg:maven/com.aerospike/aerospike-client@4.1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.10

url pkg:maven/com.aerospike/aerospike-client@4.1.11

purl pkg:maven/com.aerospike/aerospike-client@4.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.1.11

url pkg:maven/com.aerospike/aerospike-client@4.2.0

purl pkg:maven/com.aerospike/aerospike-client@4.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.2.0

url pkg:maven/com.aerospike/aerospike-client@4.2.1

purl pkg:maven/com.aerospike/aerospike-client@4.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.2.1

url pkg:maven/com.aerospike/aerospike-client@4.2.2

purl pkg:maven/com.aerospike/aerospike-client@4.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.2.2

url pkg:maven/com.aerospike/aerospike-client@4.2.3

purl pkg:maven/com.aerospike/aerospike-client@4.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.2.3

url pkg:maven/com.aerospike/aerospike-client@4.3.0

purl pkg:maven/com.aerospike/aerospike-client@4.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.3.0

url pkg:maven/com.aerospike/aerospike-client@4.3.1

purl pkg:maven/com.aerospike/aerospike-client@4.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.3.1

url pkg:maven/com.aerospike/aerospike-client@4.4.0

purl pkg:maven/com.aerospike/aerospike-client@4.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.0

url pkg:maven/com.aerospike/aerospike-client@4.4.1

purl pkg:maven/com.aerospike/aerospike-client@4.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.1

url pkg:maven/com.aerospike/aerospike-client@4.4.2

purl pkg:maven/com.aerospike/aerospike-client@4.4.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.2

url pkg:maven/com.aerospike/aerospike-client@4.4.3

purl pkg:maven/com.aerospike/aerospike-client@4.4.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.3

url pkg:maven/com.aerospike/aerospike-client@4.4.4

purl pkg:maven/com.aerospike/aerospike-client@4.4.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.4

url pkg:maven/com.aerospike/aerospike-client@4.4.5

purl pkg:maven/com.aerospike/aerospike-client@4.4.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.5

url pkg:maven/com.aerospike/aerospike-client@4.4.6

purl pkg:maven/com.aerospike/aerospike-client@4.4.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.6

url pkg:maven/com.aerospike/aerospike-client@4.4.7

purl pkg:maven/com.aerospike/aerospike-client@4.4.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.7

url pkg:maven/com.aerospike/aerospike-client@4.4.8

purl pkg:maven/com.aerospike/aerospike-client@4.4.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.8

url pkg:maven/com.aerospike/aerospike-client@4.4.9

purl pkg:maven/com.aerospike/aerospike-client@4.4.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.9

url pkg:maven/com.aerospike/aerospike-client@4.4.10

purl pkg:maven/com.aerospike/aerospike-client@4.4.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.10

url pkg:maven/com.aerospike/aerospike-client@4.4.11

purl pkg:maven/com.aerospike/aerospike-client@4.4.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.11

url pkg:maven/com.aerospike/aerospike-client@4.4.12

purl pkg:maven/com.aerospike/aerospike-client@4.4.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.12

url pkg:maven/com.aerospike/aerospike-client@4.4.13

purl pkg:maven/com.aerospike/aerospike-client@4.4.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.13

url pkg:maven/com.aerospike/aerospike-client@4.4.14

purl pkg:maven/com.aerospike/aerospike-client@4.4.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.14

url pkg:maven/com.aerospike/aerospike-client@4.4.15

purl pkg:maven/com.aerospike/aerospike-client@4.4.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.15

url pkg:maven/com.aerospike/aerospike-client@4.4.16

purl pkg:maven/com.aerospike/aerospike-client@4.4.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.16

url pkg:maven/com.aerospike/aerospike-client@4.4.17

purl pkg:maven/com.aerospike/aerospike-client@4.4.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.17

url pkg:maven/com.aerospike/aerospike-client@4.4.18

purl pkg:maven/com.aerospike/aerospike-client@4.4.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.18

url pkg:maven/com.aerospike/aerospike-client@4.4.19

purl pkg:maven/com.aerospike/aerospike-client@4.4.19

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.19

url pkg:maven/com.aerospike/aerospike-client@4.4.20

purl pkg:maven/com.aerospike/aerospike-client@4.4.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@4.4.20

url pkg:maven/com.aerospike/aerospike-client@5.0.0

purl pkg:maven/com.aerospike/aerospike-client@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.0

url pkg:maven/com.aerospike/aerospike-client@5.0.1

purl pkg:maven/com.aerospike/aerospike-client@5.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.1

url pkg:maven/com.aerospike/aerospike-client@5.0.2

purl pkg:maven/com.aerospike/aerospike-client@5.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.2

url pkg:maven/com.aerospike/aerospike-client@5.0.3

purl pkg:maven/com.aerospike/aerospike-client@5.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.3

url pkg:maven/com.aerospike/aerospike-client@5.0.4

purl pkg:maven/com.aerospike/aerospike-client@5.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.4

url pkg:maven/com.aerospike/aerospike-client@5.0.5

purl pkg:maven/com.aerospike/aerospike-client@5.0.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.5

url pkg:maven/com.aerospike/aerospike-client@5.0.6

purl pkg:maven/com.aerospike/aerospike-client@5.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.6

url pkg:maven/com.aerospike/aerospike-client@5.0.6.dbg

purl pkg:maven/com.aerospike/aerospike-client@5.0.6.dbg

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.6.dbg

url pkg:maven/com.aerospike/aerospike-client@5.0.7

purl pkg:maven/com.aerospike/aerospike-client@5.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.0.7

url pkg:maven/com.aerospike/aerospike-client@5.1.0

purl pkg:maven/com.aerospike/aerospike-client@5.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.0

url pkg:maven/com.aerospike/aerospike-client@5.1.0.1

purl pkg:maven/com.aerospike/aerospike-client@5.1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.0.1

url pkg:maven/com.aerospike/aerospike-client@5.1.1

purl pkg:maven/com.aerospike/aerospike-client@5.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.1

url pkg:maven/com.aerospike/aerospike-client@5.1.2

purl pkg:maven/com.aerospike/aerospike-client@5.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.2

url pkg:maven/com.aerospike/aerospike-client@5.1.3

purl pkg:maven/com.aerospike/aerospike-client@5.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.3

url pkg:maven/com.aerospike/aerospike-client@5.1.4

purl pkg:maven/com.aerospike/aerospike-client@5.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.4

url pkg:maven/com.aerospike/aerospike-client@5.1.5

purl pkg:maven/com.aerospike/aerospike-client@5.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.5

100

url pkg:maven/com.aerospike/aerospike-client@5.1.5.1

purl pkg:maven/com.aerospike/aerospike-client@5.1.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.5.1

101

url pkg:maven/com.aerospike/aerospike-client@5.1.6

purl pkg:maven/com.aerospike/aerospike-client@5.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.6

102

url pkg:maven/com.aerospike/aerospike-client@5.1.7

purl pkg:maven/com.aerospike/aerospike-client@5.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.7

103

url pkg:maven/com.aerospike/aerospike-client@5.1.8

purl pkg:maven/com.aerospike/aerospike-client@5.1.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.8

104

url pkg:maven/com.aerospike/aerospike-client@5.1.9

purl pkg:maven/com.aerospike/aerospike-client@5.1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.9

105

url pkg:maven/com.aerospike/aerospike-client@5.1.10

purl pkg:maven/com.aerospike/aerospike-client@5.1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.10

106

url pkg:maven/com.aerospike/aerospike-client@5.1.11

purl pkg:maven/com.aerospike/aerospike-client@5.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@5.1.11

107

url pkg:maven/com.aerospike/aerospike-client@6.0.0

purl pkg:maven/com.aerospike/aerospike-client@6.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.0.0

108

url pkg:maven/com.aerospike/aerospike-client@6.0.1

purl pkg:maven/com.aerospike/aerospike-client@6.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.0.1

109

url pkg:maven/com.aerospike/aerospike-client@6.1.0

purl pkg:maven/com.aerospike/aerospike-client@6.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.0

110

url pkg:maven/com.aerospike/aerospike-client@6.1.1

purl pkg:maven/com.aerospike/aerospike-client@6.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.1

111

url pkg:maven/com.aerospike/aerospike-client@6.1.2

purl pkg:maven/com.aerospike/aerospike-client@6.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.2

112

url pkg:maven/com.aerospike/aerospike-client@6.1.3

purl pkg:maven/com.aerospike/aerospike-client@6.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.3

113

url pkg:maven/com.aerospike/aerospike-client@6.1.4

purl pkg:maven/com.aerospike/aerospike-client@6.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.4

114

url pkg:maven/com.aerospike/aerospike-client@6.1.5

purl pkg:maven/com.aerospike/aerospike-client@6.1.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.5

115

url pkg:maven/com.aerospike/aerospike-client@6.1.6

purl pkg:maven/com.aerospike/aerospike-client@6.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.6

116

url pkg:maven/com.aerospike/aerospike-client@6.1.7

purl pkg:maven/com.aerospike/aerospike-client@6.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.7

117

url pkg:maven/com.aerospike/aerospike-client@6.1.8

purl pkg:maven/com.aerospike/aerospike-client@6.1.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.8

118

url pkg:maven/com.aerospike/aerospike-client@6.1.9

purl pkg:maven/com.aerospike/aerospike-client@6.1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.9

119

url pkg:maven/com.aerospike/aerospike-client@6.1.10

purl pkg:maven/com.aerospike/aerospike-client@6.1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.10

120

url pkg:maven/com.aerospike/aerospike-client@6.1.11

purl pkg:maven/com.aerospike/aerospike-client@6.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qz9w-sb8r-r3cq

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/com.aerospike/aerospike-client@6.1.11

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-36480

reference_id

reference_type

scores

value	0.03806
scoring_system	epss
scoring_elements	0.88359
published_at	2026-06-11T12:55:00Z

value	0.03806
scoring_system	epss
scoring_elements	0.88404
published_at	2026-06-14T12:55:00Z

value	0.03806
scoring_system	epss
scoring_elements	0.88398
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-36480

reference_url

https://github.com/aerospike/aerospike-client-java

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/aerospike/aerospike-client-java

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-36480

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-36480

reference_url

https://github.com/aerospike/aerospike-client-java/commit/02bf28e62fb186f004c82c87b219db2fc5b8262a

reference_id

02bf28e62fb186f004c82c87b219db2fc5b8262a

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/commit/02bf28e62fb186f004c82c87b219db2fc5b8262a

reference_url

https://github.com/aerospike/aerospike-client-java/commit/51c65e32837da29435161a2d9c09bbdc2071ecae

reference_id

51c65e32837da29435161a2d9c09bbdc2071ecae

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/commit/51c65e32837da29435161a2d9c09bbdc2071ecae

reference_url

https://github.com/aerospike/aerospike-client-java/commit/66aafb4cd743cf53baffaeaf69b035f51d2e2e36

reference_id

66aafb4cd743cf53baffaeaf69b035f51d2e2e36

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/commit/66aafb4cd743cf53baffaeaf69b035f51d2e2e36

reference_url

https://github.com/aerospike/aerospike-client-java/commit/80c508cc5ecb0173ce92d7fab8cfab5e77bd9900

reference_id

80c508cc5ecb0173ce92d7fab8cfab5e77bd9900

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/commit/80c508cc5ecb0173ce92d7fab8cfab5e77bd9900

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/AsyncRead.java#L68

reference_id

AsyncRead.java#L68

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/AsyncRead.java#L68

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/command/Buffer.java#L53

reference_id

Buffer.java#L53

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/command/Buffer.java#L53

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/command/Command.java#L2083

reference_id

Command.java#L2083

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/command/Command.java#L2083

reference_url

https://support.aerospike.com/s/article/CVE-2023-36480-Aerospike-Java-Client-vulnerable-to-unsafe-deserialization-of-server-responses

reference_id

CVE-2023-36480-Aerospike-Java-Client-vulnerable-to-unsafe-deserialization-of-server-responses

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://support.aerospike.com/s/article/CVE-2023-36480-Aerospike-Java-Client-vulnerable-to-unsafe-deserialization-of-server-responses

reference_url

https://github.com/advisories/GHSA-jj95-55cr-9597

reference_id

GHSA-jj95-55cr-9597

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jj95-55cr-9597

reference_url

https://github.com/aerospike/aerospike-client-java/security/advisories/GHSA-jj95-55cr-9597

reference_id

GHSA-jj95-55cr-9597

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/security/advisories/GHSA-jj95-55cr-9597

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/NettyCommand.java#L1157

reference_id

NettyCommand.java#L1157

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/NettyCommand.java#L1157

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/NettyCommand.java#L489

reference_id

NettyCommand.java#L489

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/NettyCommand.java#L489

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/NettyCommand.java#L596

reference_id

NettyCommand.java#L596

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/async/NettyCommand.java#L596

reference_url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/util/Unpacker.java#L227

reference_id

Unpacker.java#L227

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-17T14:59:51Z/

url

https://github.com/aerospike/aerospike-client-java/blob/e40a49b3db0d2b3d45068910e1cb9d917c795315/client/src/com/aerospike/client/util/Unpacker.java#L227

Weaknesses

cwe_id	502
name	Deserialization of Untrusted Data
description	The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 9.0 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qz9w-sb8r-r3cq

Vulnerability Instance