[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2012-5575":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":21,"downstream":22,"duplicates":31,"related":32,"reserved_at":9,"published_at":33,"modified_at":34,"state":35,"summary":36,"references_raw":45,"kevs":174,"epss":175,"epss_history":178,"metrics":436,"affected":441},"CVE-2012-5575","Apache CXF 2.5.x before 2.5.10, 2.6.x before CXF 2.6.7, and 2.7.x before CXF 2.7.4 does not verify that a specified cryptographic algorithm is allowed by the WS-SecurityPolicy AlgorithmSuite definition before decrypting, which allows remote attackers to force CXF to use weaker cryptographic algorithms than intended and makes it easier to decrypt communications, aka \"XML Encryption backwards compatibility attack.\"",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-310","Cryptographic Issues","Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.","category","Draft",[],[],[20],"GHSA-7v5v-9v8r-w864",[],[23,25,27,29],{"_key":24},"RHSA-2013:0834",{"_key":26},"RHSA-2013:0839",{"_key":28},"RHSA-2013:0873",{"_key":30},"RHSA-2013:0874",[],[],"2013-08-19T23:00:00.000Z","2024-08-06T21:14:16.301Z","Modified",{"cisa_kev":37,"cisa_ransomware":37,"cisa_vendor":9,"epss_severity":38,"epss_score":39,"severity":40,"severity_score":41,"severity_version":42,"severity_source":43,"severity_vector":44,"severity_status":35},false,"low",0.09505,"medium",6.4,"v2.0","nvd","AV:N/AC:L/Au:N/C:P/I:P/A:N",[46,55,60,64,68,74,79,83,87,91,95,99,103,107,111,115,121,125,129,133,137,141,146,150,154,158,162,166,170],{"url":47,"sources":48,"tags":51},"http://rhn.redhat.com/errata/RHSA-2013-0943.html",[49,43,50],"cve.org","osv_maven",[52,53,54],"Vendor Advisory","X Refsource REDHAT","WEB",{"url":56,"sources":57,"tags":58},"https://bugzilla.redhat.com/show_bug.cgi?id=880443",[49,43,50],[59,54],"X Refsource CONFIRM",{"url":61,"sources":62,"tags":63},"http://rhn.redhat.com/errata/RHSA-2013-0839.html",[49,43,50],[52,53,54],{"url":65,"sources":66,"tags":67},"http://rhn.redhat.com/errata/RHSA-2013-0875.html",[49,43,50],[52,53,54],{"url":69,"sources":70,"tags":71},"http://www.securityfocus.com/bid/60043",[49,43,50],[72,73,54],"VDB Entry","X Refsource BID",{"url":75,"sources":76,"tags":77},"http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility/",[49,43],[78],"X Refsource MISC",{"url":80,"sources":81,"tags":82},"http://rhn.redhat.com/errata/RHSA-2013-0833.html",[49,43,50],[52,53,54],{"url":84,"sources":85,"tags":86},"http://rhn.redhat.com/errata/RHSA-2013-1437.html",[49,43,50],[52,53,54],{"url":88,"sources":89,"tags":90},"http://cxf.apache.org/cve-2012-5575.html",[49,43,50],[59,54],{"url":92,"sources":93,"tags":94},"http://rhn.redhat.com/errata/RHSA-2013-1143.html",[49,43,50],[52,53,54],{"url":96,"sources":97,"tags":98},"http://rhn.redhat.com/errata/RHSA-2013-0876.html",[49,43,50],[52,53,54],{"url":100,"sources":101,"tags":102},"http://rhn.redhat.com/errata/RHSA-2013-1028.html",[49,43,50],[52,53,54],{"url":104,"sources":105,"tags":106},"http://rhn.redhat.com/errata/RHSA-2013-0834.html",[49,43,50],[52,53,54],{"url":108,"sources":109,"tags":110},"http://rhn.redhat.com/errata/RHSA-2013-0873.html",[49,43,50],[52,53,54],{"url":112,"sources":113,"tags":114},"http://rhn.redhat.com/errata/RHSA-2013-0874.html",[49,43,50],[52,53,54],{"url":116,"sources":117,"tags":118},"https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E",[49,43,50],[119,120,54],"Mailing List","X Refsource MLIST",{"url":122,"sources":123,"tags":124},"https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E",[49,43,50],[119,120,54],{"url":126,"sources":127,"tags":128},"https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E",[49,43,50],[119,120,54],{"url":130,"sources":131,"tags":132},"https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E",[49,43,50],[119,120,54],{"url":134,"sources":135,"tags":136},"https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E",[49,43,50],[119,120,54],{"url":138,"sources":139,"tags":140},"https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E",[49,43,50],[119,120,54],{"url":142,"sources":143,"tags":144},"https://nvd.nist.gov/vuln/detail/CVE-2012-5575",[50],[145],"Advisory",{"url":147,"sources":148,"tags":149},"https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E",[50],[54],{"url":151,"sources":152,"tags":153},"https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E",[50],[54],{"url":155,"sources":156,"tags":157},"https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E",[50],[54],{"url":159,"sources":160,"tags":161},"https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E",[50],[54],{"url":163,"sources":164,"tags":165},"https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E",[50],[54],{"url":167,"sources":168,"tags":169},"https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E",[50],[54],{"url":171,"sources":172,"tags":173},"http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility",[50],[54],[],{"date":176,"score":39,"percentile":177},"2026-06-04",0.92988,[179,183,185,188,191,193,196,199,202,205,208,211,214,217,220,223,226,229,232,235,238,241,244,247,249,252,254,256,259,262,265,268,271,274,278,281,284,287,290,293,296,299,302,305,308,311,314,316,318,320,323,326,329,332,335,338,340,343,346,349,352,355,358,361,364,367,370,373,376,379,381,384,387,389,392,395,398,400,403,406,409,411,414,416,419,422,425,428,431,433],{"date":180,"score":181,"percentile":182},"2025-11-04",0.12285,0.9355,{"date":184,"score":181,"percentile":182},"2025-11-05",{"date":186,"score":181,"percentile":187},"2025-11-06",0.93551,{"date":189,"score":181,"percentile":190},"2025-11-07",0.93556,{"date":192,"score":181,"percentile":190},"2025-11-08",{"date":194,"score":181,"percentile":195},"2025-11-09",0.93554,{"date":197,"score":181,"percentile":198},"2025-11-10",0.93555,{"date":200,"score":181,"percentile":201},"2025-11-11",0.93558,{"date":203,"score":181,"percentile":204},"2025-11-12",0.93562,{"date":206,"score":181,"percentile":207},"2025-11-13",0.93564,{"date":209,"score":181,"percentile":210},"2025-11-14",0.93566,{"date":212,"score":181,"percentile":213},"2025-11-15",0.93563,{"date":215,"score":181,"percentile":216},"2025-11-16",0.93567,{"date":218,"score":181,"percentile":219},"2025-11-17",0.93565,{"date":221,"score":181,"percentile":222},"2025-11-18",0.93185,{"date":224,"score":181,"percentile":225},"2025-11-19",0.93189,{"date":227,"score":181,"percentile":228},"2025-11-20",0.93194,{"date":230,"score":181,"percentile":231},"2025-11-21",0.93574,{"date":233,"score":181,"percentile":234},"2025-11-22",0.93575,{"date":236,"score":181,"percentile":237},"2025-11-23",0.9358,{"date":239,"score":181,"percentile":240},"2025-11-24",0.93583,{"date":242,"score":181,"percentile":243},"2025-11-25",0.93584,{"date":245,"score":181,"percentile":246},"2025-11-26",0.93582,{"date":248,"score":181,"percentile":243},"2025-11-27",{"date":250,"score":181,"percentile":251},"2025-11-28",0.93577,{"date":253,"score":181,"percentile":240},"2025-11-29",{"date":255,"score":181,"percentile":246},"2025-11-30",{"date":257,"score":181,"percentile":258},"2025-12-01",0.93626,{"date":260,"score":181,"percentile":261},"2025-12-02",0.93629,{"date":263,"score":181,"percentile":264},"2025-12-03",0.93632,{"date":266,"score":181,"percentile":267},"2025-12-04",0.93585,{"date":269,"score":181,"percentile":270},"2025-12-05",0.93589,{"date":272,"score":181,"percentile":273},"2025-12-06",0.93586,{"date":275,"score":276,"percentile":277},"2025-12-07",0.08846,0.92225,{"date":279,"score":276,"percentile":280},"2025-12-08",0.92226,{"date":282,"score":276,"percentile":283},"2025-12-09",0.92229,{"date":285,"score":276,"percentile":286},"2025-12-10",0.92237,{"date":288,"score":276,"percentile":289},"2025-12-11",0.92239,{"date":291,"score":276,"percentile":292},"2025-12-12",0.92243,{"date":294,"score":276,"percentile":295},"2025-12-13",0.92236,{"date":297,"score":39,"percentile":298},"2025-12-14",0.92538,{"date":300,"score":39,"percentile":301},"2025-12-15",0.92541,{"date":303,"score":39,"percentile":304},"2025-12-16",0.92549,{"date":306,"score":39,"percentile":307},"2025-12-17",0.92554,{"date":309,"score":39,"percentile":310},"2025-12-18",0.92558,{"date":312,"score":39,"percentile":313},"2025-12-19",0.92559,{"date":315,"score":39,"percentile":310},"2025-12-20",{"date":317,"score":39,"percentile":310},"2025-12-21",{"date":319,"score":39,"percentile":307},"2025-12-22",{"date":321,"score":39,"percentile":322},"2025-12-23",0.92556,{"date":324,"score":39,"percentile":325},"2025-12-24",0.92563,{"date":327,"score":39,"percentile":328},"2025-12-25",0.92567,{"date":330,"score":39,"percentile":331},"2025-12-26",0.92566,{"date":333,"score":39,"percentile":334},"2025-12-27",0.92604,{"date":336,"score":39,"percentile":337},"2025-12-28",0.92562,{"date":339,"score":39,"percentile":310},"2025-12-29",{"date":341,"score":39,"percentile":342},"2025-12-30",0.92561,{"date":344,"score":39,"percentile":345},"2025-12-31",0.9257,{"date":347,"score":39,"percentile":348},"2026-01-01",0.92624,{"date":350,"score":39,"percentile":351},"2026-01-02",0.92617,{"date":353,"score":39,"percentile":354},"2026-01-03",0.92615,{"date":356,"score":39,"percentile":357},"2026-01-04",0.92572,{"date":359,"score":39,"percentile":360},"2026-01-05",0.92571,{"date":362,"score":39,"percentile":363},"2026-01-06",0.92574,{"date":365,"score":39,"percentile":366},"2026-01-07",0.92573,{"date":368,"score":39,"percentile":369},"2026-01-08",0.92576,{"date":371,"score":39,"percentile":372},"2026-01-09",0.92579,{"date":374,"score":39,"percentile":375},"2026-01-10",0.9258,{"date":377,"score":39,"percentile":378},"2026-01-11",0.92577,{"date":380,"score":39,"percentile":378},"2026-01-12",{"date":382,"score":39,"percentile":383},"2026-01-13",0.92578,{"date":385,"score":39,"percentile":386},"2026-01-14",0.92588,{"date":388,"score":39,"percentile":386},"2026-01-15",{"date":390,"score":39,"percentile":391},"2026-01-16",0.92591,{"date":393,"score":39,"percentile":394},"2026-01-17",0.92594,{"date":396,"score":39,"percentile":397},"2026-01-18",0.92586,{"date":399,"score":39,"percentile":386},"2026-01-19",{"date":401,"score":39,"percentile":402},"2026-01-20",0.92589,{"date":404,"score":39,"percentile":405},"2026-01-21",0.92595,{"date":407,"score":39,"percentile":408},"2026-01-22",0.92597,{"date":410,"score":39,"percentile":334},"2026-01-23",{"date":412,"score":39,"percentile":413},"2026-01-24",0.92613,{"date":415,"score":39,"percentile":354},"2026-01-25",{"date":417,"score":39,"percentile":418},"2026-01-26",0.92616,{"date":420,"score":39,"percentile":421},"2026-01-27",0.92618,{"date":423,"score":39,"percentile":424},"2026-01-28",0.92621,{"date":426,"score":39,"percentile":427},"2026-01-29",0.92622,{"date":429,"score":39,"percentile":430},"2026-01-30",0.9262,{"date":432,"score":39,"percentile":430},"2026-01-31",{"date":434,"score":39,"percentile":435},"2026-02-01",0.92661,[437],{"source":43,"cvss_v2_0":438,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":41,"baseSeverity":9,"vectorString":44,"impactScore":439,"exploitabilityScore":440},4.9,10,[442,490,510,517,523,528,534],{"ecosystem":9,"name":443,"vendor":444,"product":443,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":446},"cxf","apache","a",[447,450,452,454,456,458,460,462,464,466,468,470,472,474,476,478,480,482,484,486,488],{"version":448,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.0","cpe",{"version":451,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.1",{"version":453,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.2",{"version":455,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.3",{"version":457,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.4",{"version":459,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.5",{"version":461,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.6",{"version":463,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.7",{"version":465,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.8",{"version":467,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.5.9",{"version":469,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.0",{"version":471,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.1",{"version":473,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.2",{"version":475,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.3",{"version":477,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.4",{"version":479,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.5",{"version":481,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.6",{"version":483,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.7.0",{"version":485,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.7.1",{"version":487,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.7.2",{"version":489,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.7.3",{"ecosystem":491,"name":492,"vendor":493,"product":494,"cpe_part":9,"purl_type":495,"purl_namespace":493,"purl_name":494,"source":9,"versions":496},"Maven","org.apache.cxf:cxf-rt-transports-http","org.apache.cxf","cxf-rt-transports-http","maven",[497,504,507],{"version":498,"is_range":499,"range_type":500,"version_start":448,"version_start_type":501,"version_end":502,"version_end_type":503,"fixed_in":9},"gte2_5_0_lt2_5_10",true,"ecosystem","including","2.5.10","excluding",{"version":505,"is_range":499,"range_type":500,"version_start":469,"version_start_type":501,"version_end":506,"version_end_type":503,"fixed_in":9},"gte2_6_0_lt2_6_7","2.6.7",{"version":508,"is_range":499,"range_type":500,"version_start":483,"version_start_type":501,"version_end":509,"version_end_type":503,"fixed_in":9},"gte2_7_0_lt2_7_4","2.7.4",{"ecosystem":9,"name":511,"vendor":512,"product":513,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":514},"jboss enterprise application platform","redhat","jboss_enterprise_application_platform",[515],{"version":516,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0.0",{"ecosystem":9,"name":518,"vendor":512,"product":519,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":520},"jboss enterprise portal platform","jboss_enterprise_portal_platform",[521],{"version":522,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.3.0",{"ecosystem":9,"name":524,"vendor":512,"product":525,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":526},"jboss enterprise soa platform","jboss_enterprise_soa_platform",[527],{"version":522,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":529,"vendor":512,"product":530,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":531},"jboss enterprise web platform","jboss_enterprise_web_platform",[532],{"version":533,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.2.0",{"ecosystem":9,"name":535,"vendor":512,"product":536,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":537},"jboss fuse esb enterprise","jboss_fuse_esb_enterprise",[538],{"version":539,"is_range":37,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.1.0"]