Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/52805?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/52805?format=api", "vulnerability_id": "VCID-9442-1vwr-5fbt", "summary": "XStream can cause Denial of Service via stack overflow\n### Impact\nThe vulnerability may allow a remote attacker to terminate the application with a stack overflow error resulting in a denial of service only by manipulating the processed input stream.\n\n### Patches\nXStream 1.4.20 handles the stack overflow and raises an InputManipulationException instead.\n\n### Workarounds\nThe attack uses the hash code implementation for collections and maps to force recursive hash calculation causing a stack overflow. Following types of the Java runtime are affected:\n\n- java.util.HashMap\n- java.util.HashSet\n- java.util.Hashtable\n- java.util.LinkedHashMap\n- java.util.LinkedHashSet\n- Other third party collection implementations that use their element's hash code may also be affected\n\nA simple solution is to catch the StackOverflowError in the client code calling XStream.\n\nIf your object graph does not use referenced elements at all, you may simply set the NO_REFERENCE mode:\n```Java\nXStream xstream = new XStream();\nxstream.setMode(XStream.NO_REFERENCES);\n```\n\nIf your object graph contains neither a Hashtable, HashMap nor a HashSet (or one of the linked variants of it) then you can use the security framework to deny the usage of these types:\n```Java\nXStream xstream = new XStream();\nxstream.denyTypes(new Class[]{\n java.util.HashMap.class, java.util.HashSet.class, java.util.Hashtable.class, java.util.LinkedHashMap.class, java.util.LinkedHashSet.class\n});\n```\n\nUnfortunately these types are very common. If you only use HashMap or HashSet and your XML refers these only as default map or set, you may additionally change the default implementation of java.util.Map and java.util.Set at unmarshalling time::\n```Java\nxstream.addDefaultImplementation(java.util.TreeMap.class, java.util.Map.class);\nxstream.addDefaultImplementation(java.util.TreeSet.class, java.util.Set.class);\n```\nHowever, this implies that your application does not care about the implementation of the map and all elements are comparable.\n\n### References\nSee full information about the nature of the vulnerability and the steps to reproduce it in XStream's documentation for [CVE-2022-41966](https://x-stream.github.io/CVE-2022-41966.html).\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [XStream](https://github.com/x-stream/xstream/issues)\n* Contact us at [XStream Google Group](https://groups.google.com/group/xstream-user)", "aliases": [ { "alias": "CVE-2022-41966" }, { "alias": "GHSA-j563-grx4-pjpv" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1049293?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.15-3%2Bdeb11u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.15-3%252Bdeb11u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/929316?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.15-3%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.15-3%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/929329?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.20-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/929314?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.20-1%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.20-1%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/929317?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.21-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.21-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/80464?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.20", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fcg2-x3s5-wudk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.20" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1035876?format=api", "purl": "pkg:deb/debian/libxstream-java@1.3-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.3-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035877?format=api", "purl": "pkg:deb/debian/libxstream-java@1.3.1-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.3.1-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035878?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.2-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.2-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035879?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.7-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.7-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1035880?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.7-2%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.7-2%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037863?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.9-2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.9-2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037864?format=api", "purl": "pkg:deb/debian/libxstream-java@1.4.11.1-1%2Bdeb10u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxstream-java@1.4.11.1-1%252Bdeb10u3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186496?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/186497?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186498?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186499?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186500?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186501?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186502?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186503?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186504?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186505?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186506?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186507?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.3.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.3.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186508?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/186509?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/186510?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/186511?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/186512?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/186513?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/36465?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/36466?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/208812?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" }, { "vulnerability": "VCID-znut-tkpq-b7cu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/73407?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-nn7p-d7hz-53d5" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/73378?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-bdv1-cuyk-sqc1" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-y8ub-2kad-kqbs" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/221739?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.10-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.10-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/79176?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/221740?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.11-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.11-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/221741?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.11.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.11.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/221742?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/221743?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.12-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.12-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/221744?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/221745?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.13-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.13-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/221746?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-2t1b-135u-euem" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/73278?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-java7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-java7" }, { "url": "http://public2.vulnerablecode.io/api/packages/223893?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-jdk7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-hsja-ryzy-7bbx" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vn1d-9uf5-gbce" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.14-jdk7" }, { "url": "http://public2.vulnerablecode.io/api/packages/73041?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.15", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-6mz4-fu3s-vycx" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-nrf7-heu6-vfdc" }, { "vulnerability": "VCID-qh44-75jb-wbhf" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-qwp5-wae9-cffb" }, { "vulnerability": "VCID-re5g-6kjz-q7e8" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-sqb5-brnu-vfbk" }, { "vulnerability": "VCID-u5yy-xx6z-dfh6" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-vpxs-6wcf-ckh9" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xdpy-sx55-b3ac" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" }, { "vulnerability": "VCID-zm9c-xw64-5qcc" }, { "vulnerability": "VCID-zmh2-t17w-wue1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.15" }, { "url": "http://public2.vulnerablecode.io/api/packages/75871?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.16", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-qvbb-jhkk-2udw" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.16" }, { "url": "http://public2.vulnerablecode.io/api/packages/77108?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.17", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-12bx-r37t-3ygm" }, { "vulnerability": "VCID-7ma6-2uv1-sbef" }, { "vulnerability": "VCID-8gha-n6ke-nucu" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-c5tu-31kw-mfcf" }, { "vulnerability": "VCID-dxpe-qmxq-ykax" }, { "vulnerability": "VCID-eeye-wfxf-x7cc" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-f779-wcjk-kfc1" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-na6t-mkxt-3qbw" }, { "vulnerability": "VCID-npjx-vkrd-9bae" }, { "vulnerability": "VCID-rfc1-r1gr-wffp" }, { "vulnerability": "VCID-v7za-zjfx-mqek" }, { "vulnerability": "VCID-wehr-d623-akaj" }, { "vulnerability": "VCID-xsr8-3cke-33ck" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" }, { "vulnerability": "VCID-yuwe-6pp1-bke2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.17" }, { "url": "http://public2.vulnerablecode.io/api/packages/38201?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" }, { "vulnerability": "VCID-yb4j-92y9-nfb5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/44687?format=api", "purl": "pkg:maven/com.thoughtworks.xstream/xstream@1.4.19", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-exrn-u19r-wfd8" }, { "vulnerability": "VCID-fcg2-x3s5-wudk" }, { "vulnerability": "VCID-hqzr-vc5w-9ff5" }, { "vulnerability": "VCID-mfub-hwcq-pqbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/com.thoughtworks.xstream/xstream@1.4.19" }, { "url": "http://public2.vulnerablecode.io/api/packages/96403?format=api", "purl": "pkg:rpm/redhat/jenkins@2.401.1.1685677065-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-afh4-nhxq-y3he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@2.401.1.1685677065-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/96405?format=api", "purl": "pkg:rpm/redhat/jenkins@2.401.1.1686831596-3?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-432r-ukuw-4bgt" }, { "vulnerability": "VCID-6925-fwf4-f7df" }, { "vulnerability": "VCID-9442-1vwr-5fbt" }, { "vulnerability": "VCID-afh4-nhxq-y3he" }, { "vulnerability": "VCID-betz-7kth-p3cr" }, { "vulnerability": "VCID-cden-3spy-pyhz" }, { "vulnerability": "VCID-dvyn-8phs-a3a6" }, { "vulnerability": "VCID-wyec-gfgc-4yfw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jenkins@2.401.1.1686831596-3%3Farch=el8" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41966.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41966.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-41966", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.85026", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.85018", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84993", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84996", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84994", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84973", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84978", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84979", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84957", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84911", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84929", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02376", "scoring_system": "epss", "scoring_elements": "0.84934", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02526", "scoring_system": "epss", "scoring_elements": "0.85553", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.02526", "scoring_system": "epss", "scoring_elements": "0.85485", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02526", "scoring_system": "epss", "scoring_elements": "0.85502", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.02526", "scoring_system": "epss", "scoring_elements": "0.85526", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.02526", "scoring_system": "epss", "scoring_elements": "0.85544", "published_at": "2026-05-09T12:55:00Z" }, { "value": "0.02526", "scoring_system": "epss", "scoring_elements": "0.8554", "published_at": "2026-05-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-41966" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41966", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41966" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/x-stream/xstream", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/x-stream/xstream" }, { "reference_url": "https://github.com/x-stream/xstream/security/advisories/GHSA-j563-grx4-pjpv", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-11T14:50:46Z/" } ], "url": "https://github.com/x-stream/xstream/security/advisories/GHSA-j563-grx4-pjpv" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41966", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41966" }, { "reference_url": "https://x-stream.github.io/CVE-2022-41966.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-04-11T14:50:46Z/" } ], "url": "https://x-stream.github.io/CVE-2022-41966.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027754", "reference_id": "1027754", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1027754" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170431", "reference_id": "2170431", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2170431" }, { "reference_url": "https://github.com/advisories/GHSA-j563-grx4-pjpv", "reference_id": "GHSA-j563-grx4-pjpv", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-j563-grx4-pjpv" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1006", "reference_id": "RHSA-2023:1006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1177", "reference_id": "RHSA-2023:1177", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1177" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1286", "reference_id": "RHSA-2023:1286", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1286" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2041", "reference_id": "RHSA-2023:2041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2100", "reference_id": "RHSA-2023:2100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2100" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3625", "reference_id": "RHSA-2023:3625", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3625" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:3663", "reference_id": "RHSA-2023:3663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:3663" }, { "reference_url": "https://usn.ubuntu.com/5946-1/", "reference_id": "USN-5946-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5946-1/" } ], "weaknesses": [ { "cwe_id": 120, "name": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", "description": "The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow." }, { "cwe_id": 121, "name": "Stack-based Buffer Overflow", "description": "A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function)." }, { "cwe_id": 502, "name": "Deserialization of Untrusted Data", "description": "The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid." }, { "cwe_id": 674, "name": "Uncontrolled Recursion", "description": "The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack." }, { "cwe_id": 770, "name": "Allocation of Resources Without Limits or Throttling", "description": "The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9442-1vwr-5fbt" }