{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80114?format=json","vulnerability_id":"VCID-2bxd-tp78-aked","summary":"JBCS: URL normalization issue with dot-dot-semicolon(s) leads to information disclosure","aliases":[{"alias":"CVE-2021-3688"}],"fixed_packages":[],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/100011?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-107?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-107%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100023?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-107.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-apr@1.6.3-107.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100026?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-84?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-84%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100024?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-84.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-apr-util@1.6.1-84.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100018?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-curl@7.78.0-2?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-curl@7.78.0-2%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100010?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-curl@7.78.0-2.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-curl@7.78.0-2.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100016?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-78?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-78%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100032?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-78.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-78.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100019?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-9.Final_redhat_2?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-9.Final_redhat_2%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100022?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-9.Final_redhat_2.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.16-9.Final_redhat_2.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100017?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-21?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-21%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100021?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-21.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-21.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100007?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-20.redhat_1?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-20.redhat_1%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100013?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-20.redhat_1.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-20.redhat_1.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100031?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-40?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-40%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100008?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-40.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_md@1:2.0.8-40.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100020?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-67.GA?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-67.GA%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100009?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-67.GA.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-67.GA.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100015?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-39?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-39%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100025?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-39.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-39.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100028?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-openssl@1:1.1.1g-8?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-openssl@1:1.1.1g-8%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100029?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-openssl@1:1.1.1g-8.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-openssl@1:1.1.1g-8.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100030?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-openssl-chil@1.0.0-7?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-openssl-chil@1.0.0-7%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100014?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-openssl-chil@1.0.0-7.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-openssl-chil@1.0.0-7.jbcs%3Farch=el7"},{"url":"http://public2.vulnerablecode.io/api/packages/100027?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11@0.4.10-22?arch=el8jbcs","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11@0.4.10-22%3Farch=el8jbcs"},{"url":"http://public2.vulnerablecode.io/api/packages/100012?format=json","purl":"pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11@0.4.10-22.jbcs?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-17hy-4ppt-xyhw"},{"vulnerability":"VCID-2bxd-tp78-aked"},{"vulnerability":"VCID-66k7-maf9-dfcd"},{"vulnerability":"VCID-6ptm-71xf-eqgp"},{"vulnerability":"VCID-8zet-k3h4-3kba"},{"vulnerability":"VCID-9u53-b79b-cfgd"},{"vulnerability":"VCID-9ych-ybpr-j3h6"},{"vulnerability":"VCID-bvkg-nrwd-e7g8"},{"vulnerability":"VCID-eupp-h1mx-13dy"},{"vulnerability":"VCID-f2y3-s6j8-7ygr"},{"vulnerability":"VCID-g6xr-qtwz-2yaq"},{"vulnerability":"VCID-nr5y-ve9m-zfeh"},{"vulnerability":"VCID-q6vs-dmwa-9fhh"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11@0.4.10-22.jbcs%3Farch=el7"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3688.json","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3688.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3688","reference_id":"","reference_type":"","scores":[{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50353","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50408","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50438","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50391","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50444","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50479","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.50455","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00269","scoring_system":"epss","scoring_elements":"0.5044","published_at":"2026-04-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3688"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1990252","reference_id":"1990252","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1990252"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4613","reference_id":"RHSA-2021:4613","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4613"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:4614","reference_id":"RHSA-2021:4614","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:4614"}],"weaknesses":[{"cwe_id":200,"name":"Exposure of Sensitive Information to an Unauthorized Actor","description":"The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information."}],"exploits":[],"severity_range_score":"4.8 - 4.8","exploitability":"0.5","weighted_severity":"4.3","risk_score":2.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2bxd-tp78-aked"}