Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-api@3.4.0
purl pkg:maven/org.apache.cxf/cxf-api@3.4.0
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-gtfj-ry3n-aaae
Aliases:
CVE-2020-13954
GHSA-64x2-gq24-75pv
Cross-site scripting in Apache CXF
3.4.1
Affected by 0 other vulnerabilities.
VCID-zggp-qr1y-aaaf
Aliases:
CVE-2021-22696
GHSA-7q4h-pj78-j7vg
Authorization service vulnerable to DDos attacks in Apache CFX There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2024-09-17T22:37:32.721941+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-api/CVE-2021-22696.yml 34.0.1
2024-09-17T22:37:32.674876+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-api/CVE-2020-13954.yml 34.0.1
2024-01-03T18:00:26.998873+00:00 GitLab Importer Affected by VCID-zggp-qr1y-aaaf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-api/CVE-2021-22696.yml 34.0.0rc1
2024-01-03T18:00:26.954412+00:00 GitLab Importer Affected by VCID-gtfj-ry3n-aaae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-api/CVE-2020-13954.yml 34.0.0rc1