Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-core@3.4.10
purl pkg:maven/org.apache.cxf/cxf-core@3.4.10
Next non-vulnerable version 3.5.10
Latest non-vulnerable version 4.0.6
Risk 4.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-6b2t-76tu-aaaa
Aliases:
CVE-2024-28752
GHSA-qmgx-j96g-4428
A SSRF vulnerability using the Aegis DataBinding in versions of Apache CXF before 4.0.4, 3.6.3 and 3.5.8 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. Users of other data bindings (including the default databinding) are not impacted.
3.5.8
Affected by 1 other vulnerability.
3.6.3
Affected by 1 other vulnerability.
4.0.4
Affected by 1 other vulnerability.
VCID-h2se-g2gp-77fk
Aliases:
CVE-2025-23184
GHSA-fh5r-crhr-qrrq
org.apache.cxf: Apache CXF: Denial of Service vulnerability with temporary files
3.5.10
Affected by 0 other vulnerabilities.
3.6.5
Affected by 0 other vulnerabilities.
4.0.6
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-eqe5-wr57-aaar Apache CXF vulnerable to Exposure of Sensitive Information CVE-2022-46363
GHSA-3w37-5p3p-jv92
VCID-shw4-mwht-aaan Apache CXF Server-Side Request Forgery vulnerability CVE-2022-46364
GHSA-x3x3-qwjq-8gj4

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:39:37.523434+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 36.1.3
2025-06-20T17:15:16.586133+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.1.3
2025-06-20T16:55:15.850381+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.1.3
2025-06-20T16:17:01.550325+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.1.3
2025-06-20T16:16:57.248202+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.1.3
2025-06-20T16:16:52.615630+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 36.1.3
2025-06-20T16:16:49.443411+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 36.1.3
2025-06-04T05:49:39.237943+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 36.1.0
2025-06-03T23:50:39.332850+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.1.0
2025-06-03T23:32:08.754727+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.1.0
2025-06-03T22:56:42.275176+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.1.0
2025-06-03T22:56:38.405257+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.1.0
2025-06-03T22:56:34.037233+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 36.1.0
2025-06-03T22:56:31.341983+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 36.1.0
2025-06-02T23:49:26.777868+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.1.2
2025-06-02T23:30:00.302303+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.1.2
2025-06-02T22:52:56.788408+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.1.2
2025-06-02T22:52:52.605975+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.1.2
2025-06-02T22:52:48.122032+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 36.1.2
2025-06-02T22:52:44.995968+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 36.1.2
2025-06-02T20:27:19.809813+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 36.1.2
2025-04-15T18:48:58.564691+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 36.0.0
2025-04-03T22:39:27.130948+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.0.0
2025-04-03T21:59:53.783667+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.0.0
2025-04-03T20:41:59.779364+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.0.0
2025-04-03T20:41:51.518328+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.0.0
2025-04-03T20:41:41.692305+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 36.0.0
2025-04-03T20:41:35.632617+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 36.0.0
2025-03-29T10:49:16.946180+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan None 36.0.0
2025-03-29T10:49:16.890630+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar None 36.0.0
2025-02-18T03:52:46.935941+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 35.1.0
2025-02-18T03:01:15.511770+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 35.1.0
2025-02-18T03:01:15.023752+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 35.1.0
2025-02-18T03:01:14.087823+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 35.1.0
2025-02-18T03:01:13.596750+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 35.1.0
2024-11-21T01:05:36.082743+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 35.0.0
2024-11-21T00:39:32.632667+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 35.0.0
2024-11-21T00:39:32.128689+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 35.0.0
2024-11-19T00:54:31.440596+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.3.2
2024-11-19T00:25:13.829818+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.3.2
2024-11-19T00:25:13.323854+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.3.2
2024-10-15T19:05:11.493752+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 34.0.2
2024-10-15T19:05:11.447540+00:00 GithubOSV Importer Fixing VCID-eqe5-wr57-aaar https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-3w37-5p3p-jv92/GHSA-3w37-5p3p-jv92.json 34.0.2
2024-10-08T01:25:24.566517+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.0.2
2024-10-08T01:07:56.335576+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.2
2024-10-08T01:07:55.822446+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.2
2024-10-07T22:09:15.822109+00:00 GHSA Importer Affected by VCID-6b2t-76tu-aaaa https://github.com/advisories/GHSA-qmgx-j96g-4428 34.0.2
2024-10-07T20:57:30.995076+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.2
2024-10-07T20:57:30.460681+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.2
2024-09-23T01:30:14.040626+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.0.1
2024-09-22T22:36:28.612795+00:00 GHSA Importer Affected by VCID-6b2t-76tu-aaaa https://github.com/advisories/GHSA-qmgx-j96g-4428 34.0.1
2024-09-18T09:06:40.629783+00:00 GithubOSV Importer Fixing VCID-eqe5-wr57-aaar https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-3w37-5p3p-jv92/GHSA-3w37-5p3p-jv92.json 34.0.1
2024-09-18T09:06:34.462360+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 34.0.1
2024-09-17T22:37:38.148530+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.1
2024-09-17T22:37:38.085506+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.1
2024-09-17T22:03:54.256701+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.1
2024-09-17T22:03:02.638651+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.1
2024-04-24T04:01:39.140417+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.0.0rc4
2024-04-24T03:34:03.683199+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.0rc4
2024-04-24T03:34:03.170732+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 34.0.0rc4
2024-04-24T03:34:02.654764+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.0rc4
2024-04-24T03:34:02.137339+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 34.0.0rc4
2024-04-23T23:52:14.615607+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.0rc4
2024-04-23T23:52:14.038599+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan None 34.0.0rc4
2024-04-23T23:52:13.064322+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar None 34.0.0rc4
2024-04-23T23:52:12.347434+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.0rc4
2024-04-23T23:02:52.381731+00:00 GithubOSV Importer Fixing VCID-eqe5-wr57-aaar https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-3w37-5p3p-jv92/GHSA-3w37-5p3p-jv92.json 34.0.0rc4
2024-04-23T23:02:46.458449+00:00 GithubOSV Importer Fixing VCID-shw4-mwht-aaan https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/12/GHSA-x3x3-qwjq-8gj4/GHSA-x3x3-qwjq-8gj4.json 34.0.0rc4
2024-01-10T06:15:08.824925+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.0rc2
2024-01-10T06:15:08.311157+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 34.0.0rc2
2024-01-10T06:15:07.779421+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.0rc2
2024-01-10T06:15:07.268096+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 34.0.0rc2
2024-01-10T01:51:36.595189+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.0rc2
2024-01-10T01:51:36.017630+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan None 34.0.0rc2
2024-01-10T01:51:35.048893+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar None 34.0.0rc2
2024-01-10T01:51:34.346349+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.0rc2
2024-01-03T23:02:06.000085+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan None 34.0.0rc1
2024-01-03T23:02:04.992525+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar None 34.0.0rc1
2024-01-03T18:00:32.015755+00:00 GitLab Importer Fixing VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.0rc1
2024-01-03T18:00:31.956852+00:00 GitLab Importer Fixing VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.0rc1
2024-01-03T17:38:39.390938+00:00 GHSA Importer Fixing VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.0rc1
2024-01-03T17:37:51.185022+00:00 GHSA Importer Fixing VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.0rc1