Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-core@3.4.9
purl pkg:maven/org.apache.cxf/cxf-core@3.4.9
Next non-vulnerable version 3.5.10
Latest non-vulnerable version 4.0.6
Risk 4.5
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-6b2t-76tu-aaaa
Aliases:
CVE-2024-28752
GHSA-qmgx-j96g-4428
A SSRF vulnerability using the Aegis DataBinding in versions of Apache CXF before 4.0.4, 3.6.3 and 3.5.8 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. Users of other data bindings (including the default databinding) are not impacted.
3.5.8
Affected by 1 other vulnerability.
3.6.3
Affected by 1 other vulnerability.
4.0.4
Affected by 1 other vulnerability.
VCID-eqe5-wr57-aaar
Aliases:
CVE-2022-46363
GHSA-3w37-5p3p-jv92
Apache CXF vulnerable to Exposure of Sensitive Information
3.4.10
Affected by 2 other vulnerabilities.
3.5.5
Affected by 2 other vulnerabilities.
VCID-h2se-g2gp-77fk
Aliases:
CVE-2025-23184
GHSA-fh5r-crhr-qrrq
org.apache.cxf: Apache CXF: Denial of Service vulnerability with temporary files
3.5.10
Affected by 0 other vulnerabilities.
3.6.5
Affected by 0 other vulnerabilities.
4.0.6
Affected by 0 other vulnerabilities.
VCID-shw4-mwht-aaan
Aliases:
CVE-2022-46364
GHSA-x3x3-qwjq-8gj4
Apache CXF Server-Side Request Forgery vulnerability
3.4.10
Affected by 2 other vulnerabilities.
3.5.5
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T17:15:16.584489+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.1.3
2025-06-20T16:55:15.848761+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.1.3
2025-06-20T16:17:01.547450+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.1.3
2025-06-20T16:16:57.246485+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.1.3
2025-06-20T16:16:52.614088+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 36.1.3
2025-06-20T16:16:49.441556+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 36.1.3
2025-06-03T23:50:39.331060+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.1.0
2025-06-03T23:32:08.752925+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.1.0
2025-06-03T22:56:42.273651+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.1.0
2025-06-03T22:56:38.403757+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.1.0
2025-06-03T22:56:34.035690+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 36.1.0
2025-06-03T22:56:31.340427+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 36.1.0
2025-06-02T23:49:26.776311+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.1.2
2025-06-02T23:30:00.300590+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.1.2
2025-06-02T22:52:56.786751+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.1.2
2025-06-02T22:52:52.604102+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.1.2
2025-06-02T22:52:48.119796+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 36.1.2
2025-06-02T22:52:44.994015+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 36.1.2
2025-04-03T22:39:27.125481+00:00 GitLab Importer Affected by VCID-h2se-g2gp-77fk https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2025-23184.yml 36.0.0
2025-04-03T21:59:53.778667+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 36.0.0
2025-04-03T20:41:59.774259+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 36.0.0
2025-04-03T20:41:51.513413+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 36.0.0
2025-04-03T20:41:41.687237+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 36.0.0
2025-04-03T20:41:35.627721+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 36.0.0
2025-02-18T03:52:46.931063+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 35.1.0
2025-02-18T03:01:15.506947+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 35.1.0
2025-02-18T03:01:15.018922+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 35.1.0
2025-02-18T03:01:14.082953+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 35.1.0
2025-02-18T03:01:13.591884+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 35.1.0
2024-11-21T01:05:36.077711+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 35.0.0
2024-11-21T00:39:32.627572+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 35.0.0
2024-11-21T00:39:32.123581+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 35.0.0
2024-11-19T00:54:31.435518+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.3.2
2024-11-19T00:25:13.825005+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.3.2
2024-11-19T00:25:13.318742+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.3.2
2024-10-08T01:25:24.561489+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.0.2
2024-10-08T01:07:56.330569+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.2
2024-10-08T01:07:55.817245+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.2
2024-10-07T22:09:15.815852+00:00 GHSA Importer Affected by VCID-6b2t-76tu-aaaa https://github.com/advisories/GHSA-qmgx-j96g-4428 34.0.2
2024-10-07T20:57:30.990271+00:00 GHSA Importer Affected by VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.2
2024-10-07T20:57:30.455866+00:00 GHSA Importer Affected by VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.2
2024-09-23T01:30:14.035811+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.0.1
2024-09-23T01:15:17.330166+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.1
2024-09-23T01:15:16.843947+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.1
2024-09-22T22:36:28.607537+00:00 GHSA Importer Affected by VCID-6b2t-76tu-aaaa https://github.com/advisories/GHSA-qmgx-j96g-4428 34.0.1
2024-09-22T21:34:42.294781+00:00 GHSA Importer Affected by VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.1
2024-09-22T21:34:41.741355+00:00 GHSA Importer Affected by VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.1
2024-04-24T04:01:39.134871+00:00 GitLab Importer Affected by VCID-6b2t-76tu-aaaa https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2024-28752.yml 34.0.0rc4
2024-04-24T03:34:03.678316+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.0rc4
2024-04-24T03:34:03.166054+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 34.0.0rc4
2024-04-24T03:34:02.649959+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.0rc4
2024-04-24T03:34:02.132450+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 34.0.0rc4
2024-04-23T23:52:14.609461+00:00 GHSA Importer Affected by VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.0rc4
2024-04-23T23:52:14.033952+00:00 GHSA Importer Affected by VCID-shw4-mwht-aaan None 34.0.0rc4
2024-04-23T23:52:13.059308+00:00 GHSA Importer Affected by VCID-eqe5-wr57-aaar None 34.0.0rc4
2024-04-23T23:52:12.342105+00:00 GHSA Importer Affected by VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.0rc4
2024-01-10T06:15:08.820341+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.0rc2
2024-01-10T06:15:08.306301+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 34.0.0rc2
2024-01-10T06:15:07.774829+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.0rc2
2024-01-10T06:15:07.263457+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 34.0.0rc2
2024-01-10T01:51:36.590598+00:00 GHSA Importer Affected by VCID-shw4-mwht-aaan https://github.com/advisories/GHSA-x3x3-qwjq-8gj4 34.0.0rc2
2024-01-10T01:51:36.012994+00:00 GHSA Importer Affected by VCID-shw4-mwht-aaan None 34.0.0rc2
2024-01-10T01:51:35.044370+00:00 GHSA Importer Affected by VCID-eqe5-wr57-aaar None 34.0.0rc2
2024-01-10T01:51:34.341766+00:00 GHSA Importer Affected by VCID-eqe5-wr57-aaar https://github.com/advisories/GHSA-3w37-5p3p-jv92 34.0.0rc2
2024-01-03T23:02:06.498906+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46364.yml 34.0.0rc1
2024-01-03T23:02:05.995422+00:00 GitLab Importer Affected by VCID-shw4-mwht-aaan None 34.0.0rc1
2024-01-03T23:02:05.494813+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-core/CVE-2022-46363.yml 34.0.0rc1
2024-01-03T23:02:04.987859+00:00 GitLab Importer Affected by VCID-eqe5-wr57-aaar None 34.0.0rc1