Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-r29h-hzhg-uyce

Summary

Deserialization of Untrusted Data in Apache Hadoop YARN
ZKConfigurationStore which is optionally used by CapacityScheduler of Apache Hadoop YARN deserializes data obtained from ZooKeeper without validation. An attacker having access to ZooKeeper can run arbitrary commands as YARN user by exploiting this. Users should upgrade to Apache Hadoop 2.10.2, 3.2.4, 3.3.4 or later (containing YARN-11126) if ZKConfigurationStore is used.

Aliases

alias	CVE-2021-25642

alias	GHSA-rr2m-gffv-mgrj

Fixed_packages

url	pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.2
purl	pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.2

url	pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.4
purl	pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.4

url	pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.4
purl	pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.4

url	pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.2
purl	pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.2

url	pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.4
purl	pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-q8gj-qdrr-j7cb

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.4

Affected_packages

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.5

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.5

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.6

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.6

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.7

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.7

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.8

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.8

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.9

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.9

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.10

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.10

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.11

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@0.23.11

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.0-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.0-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.0-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.1-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.1-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.1-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.2-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.2-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.2-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.3-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.3-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.3-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.4-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.4-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.4-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.5-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.5-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.5-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.6-alpha

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.6-alpha

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.0.6-alpha

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.1.0-beta

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.1.0-beta

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.1.0-beta

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.1.1-beta

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.1.1-beta

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.1.1-beta

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.2.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.2.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.3.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.3.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.4.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.4.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.4.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.4.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.5.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.5

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.6.5

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.5

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.5

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.6

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.6

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.7

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.7.7

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.5

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.8.5

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.9.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@2.10.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.0.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.1.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.2.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server@3.3.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.9.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@2.10.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.0.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.4

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.1.4

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.2.3

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.0

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.0

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.1

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-q8gj-qdrr-j7cb

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.1

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.2

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-a8xd-ukj7-tqbk

vulnerability	VCID-q8gj-qdrr-j7cb

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.2

url pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.3

purl pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-q8gj-qdrr-j7cb

vulnerability	VCID-r29h-hzhg-uyce

resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.hadoop/hadoop-yarn-server-nodemanager@3.3.3

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25642.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-25642.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-25642

reference_id

reference_type

scores

value	0.02702
scoring_system	epss
scoring_elements	0.86039
published_at	2026-05-14T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85904
published_at	2026-04-16T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85908
published_at	2026-04-18T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.859
published_at	2026-04-21T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85921
published_at	2026-04-24T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.8593
published_at	2026-04-26T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85931
published_at	2026-04-29T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.8595
published_at	2026-05-05T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85972
published_at	2026-05-07T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.8599
published_at	2026-05-09T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85988
published_at	2026-05-11T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.86001
published_at	2026-05-12T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85817
published_at	2026-04-01T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85829
published_at	2026-04-02T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85846
published_at	2026-04-04T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.8585
published_at	2026-04-07T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85869
published_at	2026-04-08T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85879
published_at	2026-04-09T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85893
published_at	2026-04-11T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85891
published_at	2026-04-12T12:55:00Z

value	0.02702
scoring_system	epss
scoring_elements	0.85886
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-25642

reference_url

https://github.com/apache/hadoop

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/hadoop

reference_url

https://github.com/apache/hadoop/commit/5e2f4339fadc88f20543915fc9b0aaeaf4f9e7bf

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/apache/hadoop/commit/5e2f4339fadc88f20543915fc9b0aaeaf4f9e7bf

reference_url

https://lists.apache.org/thread/g6vf2h4wdgzzdgk91mqozhs58wotq150

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.apache.org/thread/g6vf2h4wdgzzdgk91mqozhs58wotq150

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-25642

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-25642

reference_url

https://security.netapp.com/advisory/ntap-20221201-0003

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20221201-0003

reference_url	https://security.netapp.com/advisory/ntap-20221201-0003/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20221201-0003/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2127281
reference_id	2127281
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2127281

reference_url

https://github.com/advisories/GHSA-rr2m-gffv-mgrj

reference_id

GHSA-rr2m-gffv-mgrj

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-rr2m-gffv-mgrj

Weaknesses

cwe_id	502
name	Deserialization of Untrusted Data
description	The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 7.0 - 8.9

Exploitability 0.5

Weighted_severity 8.0

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r29h-hzhg-uyce

Vulnerability Instance