Search for vulnerabilities
Vulnerability details: VCID-awj2-djb5-eye4
Vulnerability ID VCID-awj2-djb5-eye4
Aliases CVE-2017-1000500
GHSA-qgm9-232x-hwpx
Summary Moderate severity vulnerability that affects org.keycloak:keycloak-core Withdrawn: Duplicate of CVE-2017-12161 / GHSA-959q-32g8-vvp7
Status Invalid
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-99 Improper Control of Resource Identifiers ('Resource Injection')
System Score Found at
cvssv3 4.2 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000500.json
cvssv3.1_qr MODERATE https://github.com/advisories/GHSA-qgm9-232x-hwpx
generic_textual MODERATE https://github.com/advisories/GHSA-qgm9-232x-hwpx
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2017-1000500
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000500.json
https://github.com/advisories/GHSA-qgm9-232x-hwpx
https://nvd.nist.gov/vuln/detail/CVE-2017-1000500
1533319 https://bugzilla.redhat.com/show_bug.cgi?id=1533319
No exploits are available.
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000500.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

No EPSS data available for this vulnerability.

Date Actor Action Source VulnerableCode Version
2025-07-31T12:10:14.356949+00:00 NVD CVE Status Improver Improve https://cveawg.mitre.org/api/cve/CVE-2017-1000500 37.0.0
2025-07-31T08:55:05.326745+00:00 GithubOSV Importer Import https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-qgm9-232x-hwpx/GHSA-qgm9-232x-hwpx.json 37.0.0