Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/52474?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/52474?format=api", "vulnerability_id": "VCID-bckv-bydw-sqff", "summary": "Improper Neutralization of CRLF Sequences in HTTP Headers in Jooby ('HTTP Response Splitting)\nThis affects the package io.jooby:jooby-netty before 1.6.9, from 2.0.0 and before 2.2.1. The DefaultHttpHeaders is set to false which means it does not validates that the header isn't being abused for HTTP Response Splitting.", "aliases": [ { "alias": "CVE-2020-7622" }, { "alias": "GHSA-gv3v-92v6-m48j" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77075?format=api", "purl": "pkg:maven/io.jooby/jooby@2.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/77055?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.2.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/77064?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.9", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.9" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/77074?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252669?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252670?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252671?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252672?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252673?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252674?format=api", "purl": "pkg:maven/io.jooby/jooby@2.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/252675?format=api", "purl": "pkg:maven/io.jooby/jooby@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252676?format=api", "purl": "pkg:maven/io.jooby/jooby@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252518?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0.M1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0.M1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252519?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0.M2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0.M2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252520?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0.M3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0.M3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252521?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0.RC1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0.RC1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252522?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0.RC2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0.RC2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252523?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0.RC3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0.RC3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252524?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252525?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/252526?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/252527?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/252528?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252529?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252530?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/252531?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/252532?format=api", "purl": "pkg:maven/io.jooby/jooby-netty@2.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/io.jooby/jooby-netty@2.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239971?format=api", "purl": "pkg:maven/org.jooby/jooby@0.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239972?format=api", "purl": "pkg:maven/org.jooby/jooby@0.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239973?format=api", "purl": "pkg:maven/org.jooby/jooby@0.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239974?format=api", "purl": "pkg:maven/org.jooby/jooby@0.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239975?format=api", "purl": "pkg:maven/org.jooby/jooby@0.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239976?format=api", "purl": "pkg:maven/org.jooby/jooby@0.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239977?format=api", "purl": "pkg:maven/org.jooby/jooby@0.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/239978?format=api", "purl": "pkg:maven/org.jooby/jooby@0.4.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.4.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239979?format=api", "purl": "pkg:maven/org.jooby/jooby@0.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239980?format=api", "purl": "pkg:maven/org.jooby/jooby@0.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239981?format=api", "purl": "pkg:maven/org.jooby/jooby@0.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/239982?format=api", "purl": "pkg:maven/org.jooby/jooby@0.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/239983?format=api", "purl": "pkg:maven/org.jooby/jooby@0.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239984?format=api", "purl": "pkg:maven/org.jooby/jooby@0.8.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.8.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239985?format=api", "purl": "pkg:maven/org.jooby/jooby@0.8.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.8.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239986?format=api", "purl": "pkg:maven/org.jooby/jooby@0.8.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.8.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/239987?format=api", "purl": "pkg:maven/org.jooby/jooby@0.9.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.9.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239988?format=api", "purl": "pkg:maven/org.jooby/jooby@0.9.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.9.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239989?format=api", "purl": "pkg:maven/org.jooby/jooby@0.9.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.9.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/239990?format=api", "purl": "pkg:maven/org.jooby/jooby@0.10.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.10.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239991?format=api", "purl": "pkg:maven/org.jooby/jooby@0.11.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.11.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239992?format=api", "purl": "pkg:maven/org.jooby/jooby@0.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239993?format=api", "purl": "pkg:maven/org.jooby/jooby@0.11.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.11.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/239994?format=api", "purl": "pkg:maven/org.jooby/jooby@0.12.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.12.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239995?format=api", "purl": "pkg:maven/org.jooby/jooby@0.13.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.13.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239996?format=api", "purl": "pkg:maven/org.jooby/jooby@0.13.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.13.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/239997?format=api", "purl": "pkg:maven/org.jooby/jooby@0.14.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.14.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239998?format=api", "purl": "pkg:maven/org.jooby/jooby@0.15.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.15.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/239999?format=api", "purl": "pkg:maven/org.jooby/jooby@0.15.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.15.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240000?format=api", "purl": "pkg:maven/org.jooby/jooby@0.16.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@0.16.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240001?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240002?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR2" }, { "url": "http://public2.vulnerablecode.io/api/packages/240003?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR3" }, { "url": "http://public2.vulnerablecode.io/api/packages/240004?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR4" }, { "url": "http://public2.vulnerablecode.io/api/packages/240005?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR5" }, { "url": "http://public2.vulnerablecode.io/api/packages/240006?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR6" }, { "url": "http://public2.vulnerablecode.io/api/packages/240007?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR7" }, { "url": "http://public2.vulnerablecode.io/api/packages/240008?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0.CR8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0.CR8" }, { "url": "http://public2.vulnerablecode.io/api/packages/240009?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240010?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240011?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/240012?format=api", "purl": "pkg:maven/org.jooby/jooby@1.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/240013?format=api", "purl": "pkg:maven/org.jooby/jooby@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240014?format=api", "purl": "pkg:maven/org.jooby/jooby@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240015?format=api", "purl": "pkg:maven/org.jooby/jooby@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/240016?format=api", "purl": "pkg:maven/org.jooby/jooby@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/240017?format=api", "purl": "pkg:maven/org.jooby/jooby@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240018?format=api", "purl": "pkg:maven/org.jooby/jooby@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240019?format=api", "purl": "pkg:maven/org.jooby/jooby@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/240020?format=api", "purl": "pkg:maven/org.jooby/jooby@1.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/240021?format=api", "purl": "pkg:maven/org.jooby/jooby@1.3.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.3.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240022?format=api", "purl": "pkg:maven/org.jooby/jooby@1.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240023?format=api", "purl": "pkg:maven/org.jooby/jooby@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240024?format=api", "purl": "pkg:maven/org.jooby/jooby@1.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240025?format=api", "purl": "pkg:maven/org.jooby/jooby@1.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240026?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/240027?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/240028?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/240029?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3eur-cn49-x3gu" }, { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/75885?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/252609?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/252610?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-865h-rcm7-2yfz" }, { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/77262?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/252611?format=api", "purl": "pkg:maven/org.jooby/jooby@1.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-bckv-bydw-sqff" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jooby/jooby@1.6.8" } ], "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7622", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00451", "scoring_system": "epss", "scoring_elements": "0.64074", "published_at": "2026-06-09T12:55:00Z" }, { "value": "0.00451", "scoring_system": "epss", "scoring_elements": "0.64027", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00451", "scoring_system": "epss", "scoring_elements": "0.64069", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00451", "scoring_system": "epss", "scoring_elements": "0.64077", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00451", "scoring_system": "epss", "scoring_elements": "0.64067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00451", "scoring_system": "epss", "scoring_elements": "0.64054", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7622" }, { "reference_url": "https://github.com/jooby-project/jooby/commit/654c56ea013b795f60e95036c5e86992373d0ff2", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/jooby-project/jooby/commit/654c56ea013b795f60e95036c5e86992373d0ff2" }, { "reference_url": "https://github.com/jooby-project/jooby/commit/b66e3342cf95205324023cfdf2cb5811e8a6dcf4", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jooby-project/jooby/commit/b66e3342cf95205324023cfdf2cb5811e8a6dcf4" }, { "reference_url": "https://snyk.io/vuln/SNYK-JAVA-IOJOOBY-564249", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://snyk.io/vuln/SNYK-JAVA-IOJOOBY-564249" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7622", "reference_id": "CVE-2020-7622", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7622" }, { "reference_url": "https://github.com/advisories/GHSA-gv3v-92v6-m48j", "reference_id": "GHSA-gv3v-92v6-m48j", "reference_type": "", "scores": [ { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-gv3v-92v6-m48j" }, { "reference_url": "https://github.com/jooby-project/jooby/security/advisories/GHSA-gv3v-92v6-m48j", "reference_id": "GHSA-gv3v-92v6-m48j", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/jooby-project/jooby/security/advisories/GHSA-gv3v-92v6-m48j" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 444, "name": "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", "description": "The product acts as an intermediary HTTP agent (such as a proxy or firewall) in the data flow between two entities such as a client and server, but it does not interpret malformed HTTP requests or responses in ways that are consistent with how the messages will be processed by those entities that are at the ultimate destination." } ], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": "0.5", "weighted_severity": "9.0", "risk_score": 4.5, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bckv-bydw-sqff" }