{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/30224?format=json","vulnerability_id":"VCID-ndk4-jmz9-yuca","summary":"","aliases":[{"alias":"CVE-2017-3156"},{"alias":"GHSA-qc2p-q7x9-v64p"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/389410?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.13","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.13"},{"url":"http://public2.vulnerablecode.io/api/packages/389411?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.10"},{"url":"http://public2.vulnerablecode.io/api/packages/21242?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.13","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.13"},{"url":"http://public2.vulnerablecode.io/api/packages/21236?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.10","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.10"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/416317?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/416318?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/416319?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/416320?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/416321?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/416322?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/416323?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/416324?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.9"},{"url":"http://public2.vulnerablecode.io/api/packages/416325?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/416326?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/389407?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/389408?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/416327?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.1"},{"url":"http://public2.vulnerablecode.io/api/packages/416328?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/416329?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.3"},{"url":"http://public2.vulnerablecode.io/api/packages/416330?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/416331?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.5"},{"url":"http://public2.vulnerablecode.io/api/packages/416332?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.6"},{"url":"http://public2.vulnerablecode.io/api/packages/416333?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.7"},{"url":"http://public2.vulnerablecode.io/api/packages/416334?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.8"},{"url":"http://public2.vulnerablecode.io/api/packages/389409?format=json","purl":"pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf/cxf-rt-rs-security-jose@3.1.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557680?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557681?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557682?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557683?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557684?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557685?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.8"},{"url":"http://public2.vulnerablecode.io/api/packages/557686?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557687?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.10"},{"url":"http://public2.vulnerablecode.io/api/packages/557688?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.3.11"},{"url":"http://public2.vulnerablecode.io/api/packages/557689?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.0"},{"url":"http://public2.vulnerablecode.io/api/packages/557690?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557691?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.2"},{"url":"http://public2.vulnerablecode.io/api/packages/557692?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557693?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557694?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557695?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557696?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557697?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.8"},{"url":"http://public2.vulnerablecode.io/api/packages/557698?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557699?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.4.10"},{"url":"http://public2.vulnerablecode.io/api/packages/557700?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.0"},{"url":"http://public2.vulnerablecode.io/api/packages/557701?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557702?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.2"},{"url":"http://public2.vulnerablecode.io/api/packages/557703?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557704?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557705?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557706?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.5.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.5.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557707?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557708?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557709?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.8"},{"url":"http://public2.vulnerablecode.io/api/packages/557710?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557711?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.10"},{"url":"http://public2.vulnerablecode.io/api/packages/557712?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.5.11"},{"url":"http://public2.vulnerablecode.io/api/packages/557713?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.0"},{"url":"http://public2.vulnerablecode.io/api/packages/557714?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557715?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.2"},{"url":"http://public2.vulnerablecode.io/api/packages/557716?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557717?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557718?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557719?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557720?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.6.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.6.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557721?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557722?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.8"},{"url":"http://public2.vulnerablecode.io/api/packages/557723?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557724?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.10"},{"url":"http://public2.vulnerablecode.io/api/packages/557725?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.11"},{"url":"http://public2.vulnerablecode.io/api/packages/557726?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.12"},{"url":"http://public2.vulnerablecode.io/api/packages/557727?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.13"},{"url":"http://public2.vulnerablecode.io/api/packages/557728?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.14","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.14"},{"url":"http://public2.vulnerablecode.io/api/packages/557729?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.15"},{"url":"http://public2.vulnerablecode.io/api/packages/557730?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.16"},{"url":"http://public2.vulnerablecode.io/api/packages/557731?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.17","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.6.17"},{"url":"http://public2.vulnerablecode.io/api/packages/557732?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.0"},{"url":"http://public2.vulnerablecode.io/api/packages/557733?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557734?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.2"},{"url":"http://public2.vulnerablecode.io/api/packages/557735?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557736?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557737?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557738?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557739?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557740?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.8"},{"url":"http://public2.vulnerablecode.io/api/packages/557741?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557742?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.10"},{"url":"http://public2.vulnerablecode.io/api/packages/557743?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.11"},{"url":"http://public2.vulnerablecode.io/api/packages/557744?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.12"},{"url":"http://public2.vulnerablecode.io/api/packages/557745?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.13","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.13"},{"url":"http://public2.vulnerablecode.io/api/packages/557746?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.14","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.14"},{"url":"http://public2.vulnerablecode.io/api/packages/557747?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.15","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.15"},{"url":"http://public2.vulnerablecode.io/api/packages/557748?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.16","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.16"},{"url":"http://public2.vulnerablecode.io/api/packages/557749?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.17","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.17"},{"url":"http://public2.vulnerablecode.io/api/packages/557750?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.18","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@2.7.18"},{"url":"http://public2.vulnerablecode.io/api/packages/557751?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.0-milestone1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.0-milestone1"},{"url":"http://public2.vulnerablecode.io/api/packages/557752?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.0-milestone2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.0-milestone2"},{"url":"http://public2.vulnerablecode.io/api/packages/557753?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.0"},{"url":"http://public2.vulnerablecode.io/api/packages/557754?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557755?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.2"},{"url":"http://public2.vulnerablecode.io/api/packages/557756?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557757?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557758?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557759?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557760?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557761?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.8"},{"url":"http://public2.vulnerablecode.io/api/packages/557762?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.9"},{"url":"http://public2.vulnerablecode.io/api/packages/557763?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.10","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.10"},{"url":"http://public2.vulnerablecode.io/api/packages/557764?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.11","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.11"},{"url":"http://public2.vulnerablecode.io/api/packages/21241?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.12","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.0.12"},{"url":"http://public2.vulnerablecode.io/api/packages/21234?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.0"},{"url":"http://public2.vulnerablecode.io/api/packages/557765?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.1"},{"url":"http://public2.vulnerablecode.io/api/packages/557766?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.2"},{"url":"http://public2.vulnerablecode.io/api/packages/557767?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.3"},{"url":"http://public2.vulnerablecode.io/api/packages/557768?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.4"},{"url":"http://public2.vulnerablecode.io/api/packages/557769?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.5"},{"url":"http://public2.vulnerablecode.io/api/packages/557770?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.6"},{"url":"http://public2.vulnerablecode.io/api/packages/557771?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.7"},{"url":"http://public2.vulnerablecode.io/api/packages/557772?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.8"},{"url":"http://public2.vulnerablecode.io/api/packages/21235?format=json","purl":"pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.9","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-ndk4-jmz9-yuca"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.cxf.karaf/apache-cxf@3.1.9"}],"references":[{"reference_url":"https://access.redhat.com/errata/RHSA-2017:1832","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://access.redhat.com/errata/RHSA-2017:1832"},{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-3156.json","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-3156.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-3156","reference_id":"","reference_type":"","scores":[{"value":"0.06521","scoring_system":"epss","scoring_elements":"0.91359","published_at":"2026-06-14T12:55:00Z"},{"value":"0.06521","scoring_system":"epss","scoring_elements":"0.91362","published_at":"2026-06-13T12:55:00Z"},{"value":"0.06521","scoring_system":"epss","scoring_elements":"0.91354","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06521","scoring_system":"epss","scoring_elements":"0.91324","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-3156"},{"reference_url":"https://github.com/apache/cxf","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/cxf"},{"reference_url":"https://github.com/apache/cxf/commit/1338469","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/cxf/commit/1338469"},{"reference_url":"https://github.com/apache/cxf/commit/555843f","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/cxf/commit/555843f"},{"reference_url":"https://github.com/apache/cxf/commit/e66ce235","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/apache/cxf/commit/e66ce235"},{"reference_url":"https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E"},{"reference_url":"https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E"},{"reference_url":"http://www.securityfocus.com/bid/96398","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/96398"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1425455","reference_id":"1425455","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1425455"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3156","reference_id":"CVE-2017-3156","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-3156"},{"reference_url":"http://cxf.apache.org/security-advisories.data/CVE-2017-3156.txt.asc","reference_id":"CVE-2017-3156.TXT.ASC","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://cxf.apache.org/security-advisories.data/CVE-2017-3156.txt.asc"},{"reference_url":"https://github.com/advisories/GHSA-qc2p-q7x9-v64p","reference_id":"GHSA-qc2p-q7x9-v64p","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qc2p-q7x9-v64p"}],"weaknesses":[{"cwe_id":385,"name":"Covert Timing Channel","description":"Covert timing channels convey information by modulating some aspect of system behavior over time, so that the program receiving the information can observe system behavior and infer protected information."},{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."}],"exploits":[],"severity_range_score":"5.3 - 8.9","exploitability":"0.5","weighted_severity":"8.0","risk_score":4.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ndk4-jmz9-yuca"}