[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-9622":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":30,"downstream":31,"duplicates":38,"related":39,"reserved_at":9,"published_at":40,"modified_at":41,"state":42,"summary":43,"references_raw":52,"kevs":81,"epss":82,"epss_history":85,"metrics":349,"affected":362},"CVE-2024-9622","A vulnerability was found in the resteasy-netty4 library arising from improper handling of HTTP requests using smuggling techniques. When an HTTP smuggling request with an ASCII control character is sent, it causes the Netty HttpObjectDecoder to transition into a BAD_MESSAGE state. As a result, any subsequent legitimate requests on the same connection are ignored, leading to client timeouts, which may impact systems using load balancers and expose them to risk.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-444","Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')","The product acts as an intermediary HTTP agent\n         (such as a proxy or firewall) in the data flow between two\n         entities such as a client and server, but it does not\n         interpret malformed HTTP requests or responses in ways that\n         are consistent with how the messages will be processed by\n         those entities that are at the ultimate destination.","weakness","Incomplete","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-273","HTTP Response Smuggling",[],{"id":24,"name":25,"techniques":26},"CAPEC-33","HTTP Request Smuggling",[],[],[29],"GHSA-5wpr-cj9p-959r",[],[32,34,36],{"_key":33},"USN-7351-1",{"_key":35},"UBUNTU-CVE-2024-9622",{"_key":37},"USN-7630-1",[],[],"2024-10-08T16:26:13.413Z","2025-11-21T07:28:36.663Z","Deferred",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":45,"epss_score":46,"severity":47,"severity_score":48,"severity_version":49,"severity_source":50,"severity_vector":51,"severity_status":42},false,"low",0.00026,"medium",5.3,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",[53,62,67,71,76],{"url":54,"sources":55,"tags":58},"https://access.redhat.com/security/cve/CVE-2024-9622",[50,56,57],"nvd","osv_maven",[59,60,61],"VDB Entry","X Refsource REDHAT","WEB",{"url":63,"sources":64,"tags":65},"https://bugzilla.redhat.com/show_bug.cgi?id=2317179",[50,56,57],[66,60,61],"Issue Tracking",{"url":68,"sources":69,"tags":70},"https://github.com/orgs/resteasy/discussions/4351",[50,56,57],[61],{"url":72,"sources":73,"tags":74},"https://github.com/resteasy/resteasy",[50,56,57],[75],"PACKAGE",{"url":77,"sources":78,"tags":79},"https://nvd.nist.gov/vuln/detail/CVE-2024-9622",[57],[80],"Advisory",[],{"date":83,"score":46,"percentile":84},"2026-06-04",0.07881,[86,90,93,96,99,102,105,108,111,114,117,120,123,126,129,133,136,139,142,145,148,151,154,157,160,163,167,170,173,176,179,182,185,188,191,194,197,200,203,206,209,212,215,218,221,224,227,230,233,236,239,241,244,246,249,251,254,257,260,263,266,269,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,321,324,327,329,332,335,337,339,342,344,347],{"date":87,"score":88,"percentile":89},"2025-11-04",0.00094,0.27013,{"date":91,"score":88,"percentile":92},"2025-11-05",0.26998,{"date":94,"score":88,"percentile":95},"2025-11-06",0.27009,{"date":97,"score":88,"percentile":98},"2025-11-07",0.2701,{"date":100,"score":88,"percentile":101},"2025-11-08",0.27005,{"date":103,"score":88,"percentile":104},"2025-11-09",0.26962,{"date":106,"score":88,"percentile":107},"2025-11-10",0.26927,{"date":109,"score":88,"percentile":110},"2025-11-11",0.2695,{"date":112,"score":88,"percentile":113},"2025-11-12",0.26991,{"date":115,"score":88,"percentile":116},"2025-11-13",0.26996,{"date":118,"score":88,"percentile":119},"2025-11-14",0.26982,{"date":121,"score":88,"percentile":122},"2025-11-15",0.26971,{"date":124,"score":46,"percentile":125},"2025-11-16",0.06191,{"date":127,"score":46,"percentile":128},"2025-11-17",0.0618,{"date":130,"score":131,"percentile":132},"2025-11-18",0.00415,0.58905,{"date":134,"score":131,"percentile":135},"2025-11-19",0.58919,{"date":137,"score":131,"percentile":138},"2025-11-20",0.58909,{"date":140,"score":46,"percentile":141},"2025-11-21",0.06303,{"date":143,"score":46,"percentile":144},"2025-11-22",0.06262,{"date":146,"score":46,"percentile":147},"2025-11-23",0.06244,{"date":149,"score":46,"percentile":150},"2025-11-24",0.06223,{"date":152,"score":46,"percentile":153},"2025-11-25",0.06213,{"date":155,"score":46,"percentile":156},"2025-11-26",0.06234,{"date":158,"score":46,"percentile":159},"2025-11-27",0.06247,{"date":161,"score":46,"percentile":162},"2025-11-28",0.0622,{"date":164,"score":165,"percentile":166},"2025-11-29",0.00027,0.06567,{"date":168,"score":165,"percentile":169},"2025-11-30",0.06566,{"date":171,"score":165,"percentile":172},"2025-12-01",0.06611,{"date":174,"score":165,"percentile":175},"2025-12-02",0.06622,{"date":177,"score":165,"percentile":178},"2025-12-03",0.06635,{"date":180,"score":165,"percentile":181},"2025-12-04",0.06612,{"date":183,"score":165,"percentile":184},"2025-12-05",0.06662,{"date":186,"score":165,"percentile":187},"2025-12-06",0.06672,{"date":189,"score":165,"percentile":190},"2025-12-07",0.06677,{"date":192,"score":165,"percentile":193},"2025-12-08",0.06681,{"date":195,"score":165,"percentile":196},"2025-12-09",0.06737,{"date":198,"score":165,"percentile":199},"2025-12-10",0.06805,{"date":201,"score":165,"percentile":202},"2025-12-11",0.06811,{"date":204,"score":46,"percentile":205},"2025-12-12",0.06524,{"date":207,"score":46,"percentile":208},"2025-12-13",0.06555,{"date":210,"score":46,"percentile":211},"2025-12-14",0.06525,{"date":213,"score":46,"percentile":214},"2025-12-15",0.06496,{"date":216,"score":46,"percentile":217},"2025-12-16",0.06519,{"date":219,"score":46,"percentile":220},"2025-12-17",0.06607,{"date":222,"score":46,"percentile":223},"2025-12-18",0.06667,{"date":225,"score":46,"percentile":226},"2025-12-19",0.06656,{"date":228,"score":46,"percentile":229},"2025-12-20",0.0665,{"date":231,"score":46,"percentile":232},"2025-12-21",0.0664,{"date":234,"score":46,"percentile":235},"2025-12-22",0.06597,{"date":237,"score":46,"percentile":238},"2025-12-23",0.06591,{"date":240,"score":46,"percentile":175},"2025-12-24",{"date":242,"score":46,"percentile":243},"2025-12-25",0.06684,{"date":245,"score":46,"percentile":243},"2025-12-26",{"date":247,"score":46,"percentile":248},"2025-12-27",0.06697,{"date":250,"score":46,"percentile":193},"2025-12-28",{"date":252,"score":46,"percentile":253},"2025-12-29",0.06664,{"date":255,"score":46,"percentile":256},"2025-12-30",0.06646,{"date":258,"score":46,"percentile":259},"2025-12-31",0.06693,{"date":261,"score":46,"percentile":262},"2026-01-01",0.06758,{"date":264,"score":46,"percentile":265},"2026-01-02",0.06748,{"date":267,"score":46,"percentile":268},"2026-01-03",0.06736,{"date":270,"score":46,"percentile":238},"2026-01-04",{"date":272,"score":46,"percentile":273},"2026-01-05",0.06537,{"date":275,"score":46,"percentile":276},"2026-01-06",0.06544,{"date":278,"score":46,"percentile":279},"2026-01-07",0.06569,{"date":281,"score":46,"percentile":282},"2026-01-08",0.06625,{"date":284,"score":46,"percentile":285},"2026-01-09",0.06634,{"date":287,"score":46,"percentile":288},"2026-01-10",0.06665,{"date":290,"score":46,"percentile":291},"2026-01-11",0.06653,{"date":293,"score":46,"percentile":294},"2026-01-12",0.0662,{"date":296,"score":46,"percentile":297},"2026-01-13",0.06605,{"date":299,"score":46,"percentile":300},"2026-01-14",0.06725,{"date":302,"score":46,"percentile":303},"2026-01-15",0.06729,{"date":305,"score":46,"percentile":306},"2026-01-16",0.0674,{"date":308,"score":46,"percentile":309},"2026-01-17",0.06744,{"date":311,"score":46,"percentile":312},"2026-01-18",0.06726,{"date":314,"score":46,"percentile":315},"2026-01-19",0.06688,{"date":317,"score":46,"percentile":318},"2026-01-20",0.06649,{"date":320,"score":46,"percentile":318},"2026-01-21",{"date":322,"score":46,"percentile":323},"2026-01-22",0.06627,{"date":325,"score":46,"percentile":326},"2026-01-23",0.06694,{"date":328,"score":46,"percentile":196},"2026-01-24",{"date":330,"score":46,"percentile":331},"2026-01-25",0.06707,{"date":333,"score":46,"percentile":334},"2026-01-26",0.06692,{"date":336,"score":46,"percentile":193},"2026-01-27",{"date":338,"score":46,"percentile":226},"2026-01-28",{"date":340,"score":46,"percentile":341},"2026-01-29",0.06655,{"date":343,"score":46,"percentile":187},"2026-01-30",{"date":345,"score":46,"percentile":346},"2026-01-31",0.06685,{"date":348,"score":46,"percentile":312},"2026-02-01",[350,355,357],{"source":50,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":351,"cvss_v4_0":9},{"baseScore":48,"baseSeverity":352,"vectorString":51,"impactScore":353,"exploitabilityScore":354},"MEDIUM",2.3,10,{"source":56,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":356,"cvss_v4_0":9},{"baseScore":48,"baseSeverity":352,"vectorString":51,"impactScore":353,"exploitabilityScore":354},{"source":57,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":358,"cvss_v4_0":359},{"baseScore":48,"baseSeverity":9,"vectorString":51,"impactScore":353,"exploitabilityScore":354},{"baseScore":360,"baseSeverity":9,"vectorString":361,"impactScore":9,"exploitabilityScore":9},6.9,"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",[363],{"ecosystem":364,"name":365,"vendor":366,"product":367,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":367,"source":9,"versions":369},"Maven","org.jboss.resteasy:resteasy-netty4-cdi","org.jboss.resteasy","resteasy-netty4-cdi","maven",[370],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"all",true,"ecosystem"]