Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/33206?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/33206?format=api", "vulnerability_id": "VCID-vn1d-9uf5-gbce", "summary": "XStream vulnerable to an Arbitrary File Deletion on the local host when unmarshalling\n### Impact\nThe vulnerability may allow a remote attacker to delete arbitrary know files on the host as log as the executing process has sufficient rights only by manipulating the processed input stream.\n\n### Patches\nIf you rely on XStream's default blacklist of the [Security Framework](https://x-stream.github.io/security.html#framework), you will have to use at least version 1.4.15.\n\n### Workarounds\nThe reported vulnerability does only exist with a JAX-WS runtime on the classpath.\n\nNo user is affected, who followed the recommendation to setup XStream's Security Framework with a whitelist! Anyone relying on XStream's default blacklist can immediately switch to a whilelist for the allowed types to avoid the vulnerability.\n\nUsers of XStream 1.4.14 or below who still insist to use XStream default blacklist - despite that clear recommendation - can use a workaround depending on their version in use.\n\nUsers of XStream 1.4.14 can simply add two lines to XStream's setup code:\n```Java\nxstream.denyTypes(new String[]{ \"jdk.nashorn.internal.objects.NativeString\" });\nxstream.denyTypesByRegExp(new String[]{ \".*\\\\.ReadAllStream\\\\$FileStream\" });\n```\n\nUsers of XStream 1.4.14 to 1.4.13 can simply add three lines to XStream's setup code:\n```Java\nxstream.denyTypes(new String[]{ \"javax.imageio.ImageIO$ContainsFilter\", \"jdk.nashorn.internal.objects.NativeString\" });\nxstream.denyTypes(new Class[]{ java.lang.ProcessBuilder.class });\nxstream.denyTypesByRegExp(new String[]{ \".*\\\\.ReadAllStream\\\\$FileStream\" });\n```\nUsers of XStream 1.4.12 to 1.4.7 who want to use XStream with a black list will have to setup such a list from scratch and deny at least the following types: _javax.imageio.ImageIO$ContainsFilter_, _java.beans.EventHandler_, _java.lang.ProcessBuilder_, _jdk.nashorn.internal.objects.NativeString.class_, _java.lang.Void_ and _void_ and deny several types by name pattern.\n```Java\nxstream.denyTypes(new String[]{ \"javax.imageio.ImageIO$ContainsFilter\", \"jdk.nashorn.internal.objects.NativeString\" });\nxstream.denyTypes(new Class[]{ java.lang.ProcessBuilder.class, \"jdk.nashorn.internal.objects.NativeString\", java.beans.EventHandler.class, java.lang.ProcessBuilder.class, java.lang.Void.class, void.class });\nxstream.denyTypesByRegExp(new String[]{ \".*\\\\$LazyIterator\", \"javax\\\\.crypto\\\\..*\", \".*\\\\.ReadAllStream\\\\$FileStream\" });\n```\nUsers of XStream 1.4.6 or below can register an own converter to prevent the unmarshalling of the currently know critical types of the Java runtime. It is in fact an updated version of the workaround for CVE-2013-7285:\n```Java\nxstream.registerConverter(new Converter() {\n public boolean canConvert(Class type) {\n return type != null && (type == java.beans.EventHandler.class || type == java.lang.ProcessBuilder.class\n || type.getName().equals(\"javax.imageio.ImageIO$ContainsFilter\") || type.getName().equals(\"jdk.nashorn.internal.objects.NativeString\")\n || type == java.lang.Void.class || void.class || Proxy.isProxy(type))\n || type.getName().startsWith(\"javax.crypto.\") || type.getName().endsWith(\"$LazyIterator\") || type.getName().endsWith(\".ReadAllStream$FileStream\"));\n }\n\n public Object unmarshal(HierarchicalStreamReader reader, UnmarshallingContext context) {\n throw new ConversionException(\"Unsupported type due to security reasons.\");\n }\n\n public void marshal(Object source, HierarchicalStreamWriter writer, MarshallingContext context) {\n throw new ConversionException(\"Unsupported type due to security reasons.\");\n }\n}, XStream.PRIORITY_LOW);\n```\n \n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [XStream](https://github.com/x-stream/xstream/issues)\n* Contact us at [XStream Google Group](https://groups.google.com/group/xstream-user)", "aliases": [ { "alias": "CVE-2020-26259" }, { "alias": "GHSA-jfvx-7wrx-43fh" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037864?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.11.1-1%2Bdeb10u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.11.1-1%252Bdeb10u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/929322?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.15-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.15-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1049293?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.15-3%2Bdeb11u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.15-3%252Bdeb11u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/929316?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.15-3%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.15-3%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/929314?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.20-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.20-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/929317?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.21-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.21-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/73041?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.15" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035876?format=api", "purl": "pkg:deb/debian/libxstream-java@1.3-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.3-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035877?format=api", "purl": "pkg:deb/debian/libxstream-java@1.3.1-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.3.1-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035878?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035879?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.7-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.7-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035880?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.7-2%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.7-2%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037863?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.9-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.9-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037864?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.11.1-1%2Bdeb10u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.11.1-1%252Bdeb10u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186496?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/186497?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186498?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186499?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186500?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186501?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186502?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186503?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186504?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186505?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186506?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186507?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186508?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/186509?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186510?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186511?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186512?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/186513?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/36465?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/36466?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/208812?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/73407?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/73378?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/221739?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.10-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.10-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/79176?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/221740?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.11-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.11-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/221741?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/221742?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/221743?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.12-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.12-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/221744?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/221745?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.13-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.13-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/221746?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/73278?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/223893?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-jdk7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-jdk7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26259.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26259.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-26259", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99531", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99529", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99528", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99516", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99519", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99518", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99517", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99515", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99527", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99526", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99524", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99522", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.8887", "scoring_system": "epss", "scoring_elements": "0.99521", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-26259" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26258", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26258" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26259", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26259" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/x-stream/xstream", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/x-stream/xstream" }, { "reference_url": "https://github.com/x-stream/xstream/security/advisories/GHSA-jfvx-7wrx-43fh", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/x-stream/xstream/security/advisories/GHSA-jfvx-7wrx-43fh" }, { "reference_url": "https://lists.apache.org/thread.html/r97993e3d78e1f5389b7b172ba9f308440830ce5f051ee62714a0aa34@%3Ccommits.struts.apache.org%3E", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.apache.org/thread.html/r97993e3d78e1f5389b7b172ba9f308440830ce5f051ee62714a0aa34@%3Ccommits.struts.apache.org%3E" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00042.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00042.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/22KVR6B5IZP3BGQ3HPWIO2FWWCKT3DHP", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/22KVR6B5IZP3BGQ3HPWIO2FWWCKT3DHP" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/22KVR6B5IZP3BGQ3HPWIO2FWWCKT3DHP/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/22KVR6B5IZP3BGQ3HPWIO2FWWCKT3DHP/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PVPHZA7VW2RRSDCOIPP2W6O5ND254TU7", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PVPHZA7VW2RRSDCOIPP2W6O5ND254TU7" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PVPHZA7VW2RRSDCOIPP2W6O5ND254TU7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PVPHZA7VW2RRSDCOIPP2W6O5ND254TU7/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGXIU3YDPG6OGTDHMBLAFN7BPBERXREB", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGXIU3YDPG6OGTDHMBLAFN7BPBERXREB" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGXIU3YDPG6OGTDHMBLAFN7BPBERXREB/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QGXIU3YDPG6OGTDHMBLAFN7BPBERXREB/" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26259", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-26259" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210409-0005", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20210409-0005" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210409-0005/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20210409-0005/" }, { "reference_url": "https://www.debian.org/security/2021/dsa-4828", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.debian.org/security/2021/dsa-4828" }, { "reference_url": "https://x-stream.github.io/CVE-2020-26259.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://x-stream.github.io/CVE-2020-26259.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1908837", "reference_id": "1908837", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1908837" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977624", "reference_id": "977624", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977624" }, { "reference_url": "https://github.com/advisories/GHSA-jfvx-7wrx-43fh", "reference_id": "GHSA-jfvx-7wrx-43fh", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-jfvx-7wrx-43fh" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2139", "reference_id": "RHSA-2021:2139", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2139" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2475", "reference_id": "RHSA-2021:2475", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2475" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2476", "reference_id": "RHSA-2021:2476", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2476" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3205", "reference_id": "RHSA-2021:3205", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3205" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4767", "reference_id": "RHSA-2021:4767", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4767" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5134", "reference_id": "RHSA-2021:5134", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5134" }, { "reference_url": "https://usn.ubuntu.com/4714-1/", "reference_id": "USN-4714-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4714-1/" }, { "reference_url": "https://usn.ubuntu.com/4943-1/", "reference_id": "USN-4943-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4943-1/" }, { "reference_url": "https://usn.ubuntu.com/6978-1/", "reference_id": "USN-6978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6978-1/" } ], "weaknesses": [ { "cwe_id": 78, "name": "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "description": "The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "2.0", "weighted_severity": "6.2", "risk_score": 10.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vn1d-9uf5-gbce" }