[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2012-4529":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":26,"related":27,"reserved_at":9,"published_at":28,"modified_at":29,"state":30,"summary":31,"references_raw":40,"kevs":70,"epss":71,"epss_history":74,"metrics":339,"affected":344},"CVE-2012-4529","The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a session, which allows remote attackers to obtain the session id (1) via a man-in-the-middle attack or (2) by reading a log.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-NOINFO","Insufficient Information","NVD uses this CWE ID when there is insufficient information to assign a specific CWE.","placeholder","NVD-Reserved",[],[],[],[],[22,24],{"_key":23},"RHSA-2013:0834",{"_key":25},"RHSA-2013:0839",[],[],"2013-10-28T21:00:00.000Z","2024-08-06T20:42:54.635Z","Modified",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":33,"epss_score":34,"severity":35,"severity_score":36,"severity_version":37,"severity_source":38,"severity_vector":39,"severity_status":30},false,"low",0.00563,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:P/I:N/A:N",[41,48,52,56,61,66],{"url":42,"sources":43,"tags":45},"http://rhn.redhat.com/errata/RHSA-2013-0839.html",[44,38],"cve.org",[46,47],"Vendor Advisory","X Refsource REDHAT",{"url":49,"sources":50,"tags":51},"http://rhn.redhat.com/errata/RHSA-2013-0833.html",[44,38],[46,47],{"url":53,"sources":54,"tags":55},"http://rhn.redhat.com/errata/RHSA-2013-1437.html",[44,38],[46,47],{"url":57,"sources":58,"tags":59},"http://ocpsoft.org/support/topic/session-id-is-appended-as-url-path-parameter-in-very-first-request/",[44,38],[60],"X Refsource MISC",{"url":62,"sources":63,"tags":64},"https://issues.jboss.org/browse/JBWEB-249",[44,38],[65],"X Refsource CONFIRM",{"url":67,"sources":68,"tags":69},"http://rhn.redhat.com/errata/RHSA-2013-0834.html",[44,38],[46,47],[],{"date":72,"score":34,"percentile":73},"2026-06-04",0.68737,[75,78,81,84,87,90,93,96,99,101,104,107,110,113,116,119,122,125,128,131,133,136,139,142,144,147,150,154,157,160,163,166,169,172,175,178,181,184,187,190,193,196,199,202,205,208,211,214,217,220,223,226,229,232,235,238,241,244,247,250,253,255,258,261,263,266,269,272,275,278,281,284,287,290,293,296,299,302,305,307,310,313,316,318,321,324,327,330,333,336],{"date":76,"score":34,"percentile":77},"2025-11-04",0.67486,{"date":79,"score":34,"percentile":80},"2025-11-05",0.67468,{"date":82,"score":34,"percentile":83},"2025-11-06",0.6747,{"date":85,"score":34,"percentile":86},"2025-11-07",0.67482,{"date":88,"score":34,"percentile":89},"2025-11-08",0.67481,{"date":91,"score":34,"percentile":92},"2025-11-09",0.67472,{"date":94,"score":34,"percentile":95},"2025-11-10",0.67462,{"date":97,"score":34,"percentile":98},"2025-11-11",0.67466,{"date":100,"score":34,"percentile":77},"2025-11-12",{"date":102,"score":34,"percentile":103},"2025-11-13",0.67496,{"date":105,"score":34,"percentile":106},"2025-11-14",0.67503,{"date":108,"score":34,"percentile":109},"2025-11-15",0.675,{"date":111,"score":34,"percentile":112},"2025-11-16",0.67494,{"date":114,"score":34,"percentile":115},"2025-11-17",0.67489,{"date":117,"score":34,"percentile":118},"2025-11-18",0.65807,{"date":120,"score":34,"percentile":121},"2025-11-19",0.65816,{"date":123,"score":34,"percentile":124},"2025-11-20",0.65809,{"date":126,"score":34,"percentile":127},"2025-11-21",0.67506,{"date":129,"score":34,"percentile":130},"2025-11-22",0.67509,{"date":132,"score":34,"percentile":109},"2025-11-23",{"date":134,"score":34,"percentile":135},"2025-11-24",0.67488,{"date":137,"score":34,"percentile":138},"2025-11-25",0.67497,{"date":140,"score":34,"percentile":141},"2025-11-26",0.67504,{"date":143,"score":34,"percentile":127},"2025-11-27",{"date":145,"score":34,"percentile":146},"2025-11-28",0.67492,{"date":148,"score":34,"percentile":149},"2025-11-29",0.67474,{"date":151,"score":152,"percentile":153},"2025-11-30",0.00567,0.67576,{"date":155,"score":152,"percentile":156},"2025-12-01",0.67732,{"date":158,"score":152,"percentile":159},"2025-12-02",0.67738,{"date":161,"score":152,"percentile":162},"2025-12-03",0.67736,{"date":164,"score":152,"percentile":165},"2025-12-04",0.67568,{"date":167,"score":152,"percentile":168},"2025-12-05",0.67582,{"date":170,"score":152,"percentile":171},"2025-12-06",0.67586,{"date":173,"score":34,"percentile":174},"2025-12-07",0.67477,{"date":176,"score":34,"percentile":177},"2025-12-08",0.6748,{"date":179,"score":34,"percentile":180},"2025-12-09",0.67512,{"date":182,"score":34,"percentile":183},"2025-12-10",0.67559,{"date":185,"score":34,"percentile":186},"2025-12-11",0.67578,{"date":188,"score":34,"percentile":189},"2025-12-12",0.67603,{"date":191,"score":34,"percentile":192},"2025-12-13",0.67611,{"date":194,"score":34,"percentile":195},"2025-12-14",0.67615,{"date":197,"score":34,"percentile":198},"2025-12-15",0.67612,{"date":200,"score":34,"percentile":201},"2025-12-16",0.67614,{"date":203,"score":34,"percentile":204},"2025-12-17",0.67627,{"date":206,"score":34,"percentile":207},"2025-12-18",0.67664,{"date":209,"score":34,"percentile":210},"2025-12-19",0.67683,{"date":212,"score":34,"percentile":213},"2025-12-20",0.67682,{"date":215,"score":34,"percentile":216},"2025-12-21",0.67668,{"date":218,"score":34,"percentile":219},"2025-12-22",0.6767,{"date":221,"score":34,"percentile":222},"2025-12-23",0.67666,{"date":224,"score":34,"percentile":225},"2025-12-24",0.67675,{"date":227,"score":34,"percentile":228},"2025-12-25",0.67707,{"date":230,"score":34,"percentile":231},"2025-12-26",0.67708,{"date":233,"score":34,"percentile":234},"2025-12-27",0.67767,{"date":236,"score":34,"percentile":237},"2025-12-28",0.6768,{"date":239,"score":34,"percentile":240},"2025-12-29",0.67673,{"date":242,"score":34,"percentile":243},"2025-12-30",0.67686,{"date":245,"score":34,"percentile":246},"2025-12-31",0.67704,{"date":248,"score":34,"percentile":249},"2026-01-01",0.67879,{"date":251,"score":34,"percentile":252},"2026-01-02",0.67867,{"date":254,"score":34,"percentile":252},"2026-01-03",{"date":256,"score":34,"percentile":257},"2026-01-04",0.67701,{"date":259,"score":34,"percentile":260},"2026-01-05",0.6769,{"date":262,"score":34,"percentile":257},"2026-01-06",{"date":264,"score":34,"percentile":265},"2026-01-07",0.6772,{"date":267,"score":34,"percentile":268},"2026-01-08",0.67735,{"date":270,"score":34,"percentile":271},"2026-01-09",0.67745,{"date":273,"score":34,"percentile":274},"2026-01-10",0.67748,{"date":276,"score":34,"percentile":277},"2026-01-11",0.6774,{"date":279,"score":34,"percentile":280},"2026-01-12",0.67727,{"date":282,"score":34,"percentile":283},"2026-01-13",0.67723,{"date":285,"score":34,"percentile":286},"2026-01-14",0.67761,{"date":288,"score":34,"percentile":289},"2026-01-15",0.67765,{"date":291,"score":34,"percentile":292},"2026-01-16",0.67781,{"date":294,"score":34,"percentile":295},"2026-01-17",0.67769,{"date":297,"score":34,"percentile":298},"2026-01-18",0.67758,{"date":300,"score":34,"percentile":301},"2026-01-19",0.67743,{"date":303,"score":34,"percentile":304},"2026-01-20",0.67752,{"date":306,"score":34,"percentile":286},"2026-01-21",{"date":308,"score":34,"percentile":309},"2026-01-22",0.67771,{"date":311,"score":34,"percentile":312},"2026-01-23",0.67801,{"date":314,"score":34,"percentile":315},"2026-01-24",0.67812,{"date":317,"score":34,"percentile":292},"2026-01-25",{"date":319,"score":34,"percentile":320},"2026-01-26",0.67772,{"date":322,"score":34,"percentile":323},"2026-01-27",0.6778,{"date":325,"score":34,"percentile":326},"2026-01-28",0.67792,{"date":328,"score":34,"percentile":329},"2026-01-29",0.67788,{"date":331,"score":34,"percentile":332},"2026-01-30",0.67797,{"date":334,"score":34,"percentile":335},"2026-01-31",0.678,{"date":337,"score":34,"percentile":338},"2026-02-01",0.67952,[340],{"source":38,"cvss_v2_0":341,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":36,"baseSeverity":9,"vectorString":39,"impactScore":342,"exploitabilityScore":343},2.9,8.6,[345,375],{"ecosystem":9,"name":346,"vendor":347,"product":348,"cpe_part":349,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":350},"jboss community application server","redhat","jboss_community_application_server","a",[351,357,359,361,363,365,367,369,371,373],{"version":352,"is_range":353,"range_type":354,"version_start":9,"version_start_type":9,"version_end":355,"version_end_type":356,"fixed_in":9},"lte7.1.1",true,"cpe","7.1.1","including",{"version":358,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0",{"version":360,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.1",{"version":362,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.1.0",{"version":364,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0.0",{"version":366,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.1.0",{"version":368,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.0",{"version":370,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.1",{"version":372,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0.2",{"version":374,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.1.0",{"ecosystem":9,"name":376,"vendor":347,"product":377,"cpe_part":349,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":378},"jboss enterprise application platform","jboss_enterprise_application_platform",[379],{"version":364,"is_range":32,"range_type":354,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]