| No Vulnerabilities found |
|---|
| No Misconfigurations found |
|---|
| ch.qos.logback:logback-core |
CVE-2026-1225 |
LOW |
1.5.19 |
1.5.25 |
https://access.redhat.com/security/cve/CVE-2026-1225
https://github.com/qos-ch/logback
https://github.com/qos-ch/logback/commit/1f97ae1844b1be8486e4e9cade98d7123d3eded5
https://github.com/qos-ch/logback/issues/997
https://logback.qos.ch/news.html#1.5.25
https://nvd.nist.gov/vuln/detail/CVE-2026-1225
https://www.cve.org/CVERecord?id=CVE-2026-1225
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.18.4.1 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| io.netty:netty-codec |
CVE-2026-42583 |
HIGH |
4.1.125.Final |
4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
https://nvd.nist.gov/vuln/detail/CVE-2026-42583
https://www.cve.org/CVERecord?id=CVE-2026-42583
|
| io.netty:netty-codec-dns |
CVE-2026-42579 |
HIGH |
4.1.122.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42579
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm
https://nvd.nist.gov/vuln/detail/CVE-2026-42579
https://tools.ietf.org/html/rfc1035#section-2.3.4
https://tools.ietf.org/html/rfc1035#section-4.1.4
https://www.cve.org/CVERecord?id=CVE-2026-42579
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.125.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
HIGH |
4.1.125.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42584
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
https://nvd.nist.gov/vuln/detail/CVE-2026-42584
https://www.cve.org/CVERecord?id=CVE-2026-42584
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
HIGH |
4.1.125.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-codec-http |
CVE-2025-67735 |
MEDIUM |
4.1.125.Final |
4.2.8.Final, 4.1.129.Final |
https://access.redhat.com/security/cve/CVE-2025-67735
https://github.com/netty/netty
https://github.com/netty/netty/commit/77e81f1e5944d98b3acf887d3aa443b252752e94
https://github.com/netty/netty/security/advisories/GHSA-84h7-rjj3-6jx4
https://nvd.nist.gov/vuln/detail/CVE-2025-67735
https://www.cve.org/CVERecord?id=CVE-2025-67735
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
MEDIUM |
4.1.125.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-41417
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv
https://nvd.nist.gov/vuln/detail/CVE-2026-41417
https://www.cve.org/CVERecord?id=CVE-2026-41417
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
MEDIUM |
4.1.125.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42580
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723
https://nvd.nist.gov/vuln/detail/CVE-2026-42580
https://www.cve.org/CVERecord?id=CVE-2026-42580
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
MEDIUM |
4.1.125.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42581
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9
https://nvd.nist.gov/vuln/detail/CVE-2026-42581
https://www.cve.org/CVERecord?id=CVE-2026-42581
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
MEDIUM |
4.1.125.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42585
https://datatracker.ietf.org/doc/html/rfc9112#name-message-body-length
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-38f8-5428-x5cv
https://nvd.nist.gov/vuln/detail/CVE-2026-42585
https://www.cve.org/CVERecord?id=CVE-2026-42585
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
HIGH |
4.1.125.Final |
4.1.132.Final, 4.2.11.Final |
https://access.redhat.com/security/cve/CVE-2026-33871
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv
https://nvd.nist.gov/vuln/detail/CVE-2026-33871
https://www.cve.org/CVERecord?id=CVE-2026-33871
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
HIGH |
4.1.125.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-handler-proxy |
CVE-2026-42578 |
LOW |
4.1.122.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-42578
https://github.com/advisories/GHSA-84h7-rjj3-6jx4
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-45q3-82m4-75jr
https://nvd.nist.gov/vuln/detail/CVE-2026-42578
https://www.cve.org/CVERecord?id=CVE-2026-42578
|
| net.sf.jasperreports:jasperreports |
CVE-2025-10492 |
HIGH |
6.21.5 |
7.0.4 |
https://community.jaspersoft.com/advisories/jaspersoft-security-advisory-september-16-2025-jaspersoft-library-cve-2025-10492-r6
https://community.jaspersoft.com/advisories/jaspersoft-security-advisory-september-16-2025-jaspersoft-library-cve-2025-10492-r6/
https://community.jaspersoft.com/forums/topic/69926-cve-2025-10492-%E2%80%93-no-fix-available-after-jasperreports-upgrade-community-edition
https://github.com/Jaspersoft/jasperreports
https://github.com/Jaspersoft/jasperreports/commit/3541a3e2b1ad8b78388ac505091da75cb652a647
https://github.com/Jaspersoft/jasperreports/commit/827c2f27c4ca8e2c5b3142d76df9c1c8575f3569
https://github.com/Jaspersoft/jasperreports/issues/542
https://nvd.nist.gov/vuln/detail/CVE-2025-10492
|
| org.apache.kafka:kafka-clients |
CVE-2026-35554 |
HIGH |
3.9.1 |
3.9.2, 4.0.2, 4.1.2 |
http://www.openwall.com/lists/oss-security/2026/04/07/6
https://access.redhat.com/security/cve/CVE-2026-35554
https://github.com/apache/kafka
https://github.com/apache/kafka/commit/1df2ac5b2ba4d1b5ed54b895ff6fb9539303ccb5
https://github.com/apache/kafka/pull/21065
https://github.com/apache/kafka/pull/21285
https://github.com/apache/kafka/pull/21286
https://github.com/apache/kafka/pull/21287
https://github.com/apache/kafka/pull/21288
https://issues.apache.org/jira/browse/KAFKA-19012
https://lists.apache.org/thread/f07x7j8ovyqhjd1to25jsnqbm6wj01d6
https://nvd.nist.gov/vuln/detail/CVE-2026-35554
https://www.cve.org/CVERecord?id=CVE-2026-35554
|
| org.apache.kafka:kafka-clients |
CVE-2026-33558 |
MEDIUM |
3.9.1 |
3.9.2, 4.0.1 |
http://www.openwall.com/lists/oss-security/2026/04/17/3
https://github.com/apache/kafka
https://kafka.apache.org/cve-list
https://lists.apache.org/thread/pz5g4ky3h0k91tfd14p0dzqjp80960kl
https://nvd.nist.gov/vuln/detail/CVE-2026-33558
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-41293 |
CRITICAL |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/13
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/19f17a257797e8d139b33ff9c88d362a273be148
https://github.com/apache/tomcat/commit/1c70480466572c9192ed412ebefcd43fc63137fd
https://github.com/apache/tomcat/commit/2a2476460e823789f530a22207873ea8cd6eff3b
https://github.com/apache/tomcat/commit/3915fd27e6810b14ccd21e3d900bd8faef44d3df
https://github.com/apache/tomcat/commit/57c2b3bfd62792631e1df24cf4237b990a0b36fa
https://github.com/apache/tomcat/commit/c2925554c677da57390f940d856871e18daaacab
https://github.com/apache/tomcat/commit/cf9452443bcbf3b1a4b435ef7d624364f1b65ca3
https://github.com/apache/tomcat/commit/e5cef9618c3f4fd31bd6fb1e83f0f18022280dac
https://github.com/apache/tomcat/commit/f72a6174ab1f0f5a053435f80448b4f6837fe6d7
https://lists.apache.org/thread/qwg0q16z7xkb2qrr853wdll5531mvl1r
https://nvd.nist.gov/vuln/detail/CVE-2026-41293
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-41293
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43512 |
CRITICAL |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/8
https://access.redhat.com/security/cve/CVE-2026-43512
https://github.com/apache/tomcat/commit/3d4d3fae07a6cd9c2eb193c5491001740ec64448
https://github.com/apache/tomcat/commit/6565a6cb6499e56fe2f34457cec99f9d1c4f39e9
https://github.com/apache/tomcat/commit/a99c355e8199adbfd67c9a1fffbd85b810b196cd
https://lists.apache.org/thread/7x09x7o12solvclslw3sz0288xc8wx73
https://nvd.nist.gov/vuln/detail/CVE-2026-43512
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-43512
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43515 |
CRITICAL |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/11
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/276087d9c7abbcecc6c4fb4e4b08cf64780c6e36
https://github.com/apache/tomcat/commit/c621317382682206fb58ab92ebd3e1b6fdd10ce9
https://github.com/apache/tomcat/commit/db919ff9912b4d61d1b702a1342b8bde39270031
https://lists.apache.org/thread/746nxfxod0wsocxtmv8pb8nkgmwpc6bb
https://nvd.nist.gov/vuln/detail/CVE-2026-43515
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-43515
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-24734 |
HIGH |
11.0.12 |
11.0.18, 10.1.52, 9.0.115 |
https://access.redhat.com/errata/RHSA-2026:19054
https://access.redhat.com/security/cve/CVE-2026-24734
https://bugzilla.redhat.com/2440426
https://errata.almalinux.org/10/ALSA-2026-19054.html
https://github.com/apache/tomcat
https://lists.apache.org/thread/292dlmx3fz1888v6v16221kpozq56gml
https://nvd.nist.gov/vuln/detail/CVE-2026-24734
https://www.cve.org/CVERecord?id=CVE-2026-24734
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-24880 |
HIGH |
11.0.12 |
9.0.116, 10.1.52, 11.0.20 |
http://www.openwall.com/lists/oss-security/2026/04/09/20
https://access.redhat.com/security/cve/CVE-2026-24880
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/1b586d6aa8ae65726da5fa8799427b5d4718478a
https://github.com/apache/tomcat/commit/1e71441a15972f56e661b0b549fb9e5d838b83bb
https://github.com/apache/tomcat/commit/2cb06c34f661ca42f7570bbcc21e99806184bcc5
https://github.com/apache/tomcat/commit/6d478dbe18b7c4bb671c30fedf130309b0dab77c
https://github.com/apache/tomcat/commit/f07df938d00f7419b40fa65aa912966d0efac522
https://github.com/apache/tomcat/commit/fde1a8235fb73125217bd41e162aa0a113f33552
https://lists.apache.org/thread/2c682qnlg2tv4o5knlggqbl9yc2gb5sn
https://nvd.nist.gov/vuln/detail/CVE-2026-24880
https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.53
https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.20
https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.116
https://www.cve.org/CVERecord?id=CVE-2026-24880
https://www.herodevs.com/vulnerability-directory/cve-2026-24880
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-34483 |
HIGH |
11.0.12 |
9.0.116, 10.1.54, 11.0.21 |
http://www.openwall.com/lists/oss-security/2026/04/09/26
https://access.redhat.com/security/cve/CVE-2026-34483
https://github.com/apache/tomcat
https://lists.apache.org/thread/j1w7304yonlr8vo1tkb5nfs7od1y228b
https://nvd.nist.gov/vuln/detail/CVE-2026-34483
https://www.cve.org/CVERecord?id=CVE-2026-34483
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-34487 |
HIGH |
11.0.12 |
9.0.117, 10.1.54, 11.0.21 |
http://www.openwall.com/lists/oss-security/2026/04/09/28
https://access.redhat.com/security/cve/CVE-2026-34487
https://github.com/apache/tomcat
https://lists.apache.org/thread/4xpkwolpkrj8v5xzp5nyovtlqp3y850h
https://nvd.nist.gov/vuln/detail/CVE-2026-34487
https://www.cve.org/CVERecord?id=CVE-2026-34487
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-41284 |
HIGH |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/12
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/17dacd9aa48628da2eba37a9ab743c0b6c71685c
https://github.com/apache/tomcat/commit/a96fffd18487a29c0a30d36f00cb2b2d91f6d42c
https://github.com/apache/tomcat/commit/b3d1c1c239142e806be0b7329d304b94a58913ed
https://lists.apache.org/thread/2nvqjr7ovjmvx2vbhb7s61ycd5msc8qc
https://nvd.nist.gov/vuln/detail/CVE-2026-41284
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-41284
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-42498 |
HIGH |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/14
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/169d725788ea6aec217ecac70fe4161c837ba423
https://github.com/apache/tomcat/commit/6cbe274592ef2d11607b5b188e1df649de52f8d5
https://github.com/apache/tomcat/commit/b7b173694d588ddcfa432f079baf763cbbbaa5c4
https://lists.apache.org/thread/n61zwf75jrv09rz90j4jssncm244bwdb
https://nvd.nist.gov/vuln/detail/CVE-2026-42498
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-42498
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43513 |
HIGH |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/9
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/4a90d3fa93988c447cd5bb7482f76ff70d7f15c2
https://github.com/apache/tomcat/commit/6dd75beb55bd42fc5f78e929596b25018cd17717
https://github.com/apache/tomcat/commit/83f3e51df7b87f5f6e626951c575ded1a512e8ef
https://lists.apache.org/thread/ytjcgldshj73lcnd1sh95od5hrghwogp
https://nvd.nist.gov/vuln/detail/CVE-2026-43513
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-43513
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2025-66614 |
MEDIUM |
11.0.12 |
11.0.15, 10.1.50, 9.0.113 |
https://access.redhat.com/security/cve/CVE-2025-66614
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/152c14885d45f5e0a8b59bd9f93c289cfe20ce30
https://github.com/apache/tomcat/commit/258a591b61f8cf5c22109e21e5a2a38b63454fd2
https://github.com/apache/tomcat/commit/5053fa82a1b2b52756810601227984a8b71888a4
https://github.com/apache/tomcat/commit/9276b5e783c8cd5b3fe2bb716306b65004bdd940
https://github.com/apache/tomcat/commit/972f9a5e2a07674d92610c478aac1b205d60724e
https://github.com/apache/tomcat/commit/a4aa74232e826028cd2f7ba0445caf8a8b52c509
https://lists.apache.org/thread/vw6lxtlh2qbqwpb61wd3sv1flm2nttw7
https://nvd.nist.gov/vuln/detail/CVE-2025-66614
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2025-66614
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-25854 |
MEDIUM |
11.0.12 |
9.0.116, 10.1.53, 11.0.20 |
http://www.openwall.com/lists/oss-security/2026/04/09/21
https://access.redhat.com/security/cve/CVE-2026-25854
https://github.com/apache/tomcat
https://lists.apache.org/thread/ghct3b6o74bp2vm7q875s1zh0dqrz3h0
https://nvd.nist.gov/vuln/detail/CVE-2026-25854
https://www.cve.org/CVERecord?id=CVE-2026-25854
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-24733 |
LOW |
11.0.12 |
11.0.15, 10.1.50, 9.0.113 |
https://access.redhat.com/security/cve/CVE-2026-24733
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/2e2fa23f2635bbb819759576a2f2f5e64ecf7c5f
https://github.com/apache/tomcat/commit/6c73d74ff281260d74c836370ff6b82f1da8048b
https://github.com/apache/tomcat/commit/711b465cf22684a1acf0cb43501cdbbce9b6c5f4
https://lists.apache.org/thread/6xk3t65qpn1myp618krtfotbjn1qt90f
https://nvd.nist.gov/vuln/detail/CVE-2026-24733
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-24733
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-43514 |
LOW |
11.0.12 |
9.0.118, 10.1.55, 11.0.22 |
http://www.openwall.com/lists/oss-security/2026/05/12/10
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/933dcdbf2515972280002929e7e597dead2e9ffa
https://github.com/apache/tomcat/commit/a102a2a157868ca51d83eaf5a119ccd9976a113e
https://github.com/apache/tomcat/commit/d35d9d23263c8e4af561f615c960c91697ff200e
https://lists.apache.org/thread/2k654v5cq123npfsd1b2kk1y30owqb1m
https://nvd.nist.gov/vuln/detail/CVE-2026-43514
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2026-43514
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-5598 |
HIGH |
1.78.1 |
1.84 |
https://access.redhat.com/security/cve/CVE-2026-5598
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/8692e6b2b191fc4aafa32545c7a78bdb9bf110c5
https://github.com/bcgit/bc-java/commit/94abbd56413dfdac651fd878bc60253871ef5e87
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905598
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905998
https://github.com/bcgit/bc-java/wiki/CVE-2026-5598
https://nvd.nist.gov/vuln/detail/CVE-2026-5598
https://www.cve.org/CVERecord?id=CVE-2026-5598
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-0636 |
MEDIUM |
1.78.1 |
1.84 |
https://access.redhat.com/security/cve/CVE-2026-0636
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/d20cdb8430e09224114fec0179a71859929fcbde
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%900636
https://nvd.nist.gov/vuln/detail/CVE-2026-0636
https://www.cve.org/CVERecord?id=CVE-2026-0636
|
| org.lz4:lz4-java |
CVE-2025-12183 |
HIGH |
1.8.0 |
1.8.1 |
http://www.openwall.com/lists/oss-security/2025/12/01/5
https://access.redhat.com/security/cve/CVE-2025-12183
https://github.com/yawkat/lz4-java
https://github.com/yawkat/lz4-java/releases/tag/v1.8.1
https://nvd.nist.gov/vuln/detail/CVE-2025-12183
https://sites.google.com/sonatype.com/vulnerabilities/cve-2025-12183
https://www.cve.org/CVERecord?id=CVE-2025-12183
https://www.sonatype.com/security-advisories/cve-2025-12183
|
| org.lz4:lz4-java |
CVE-2025-66566 |
HIGH |
1.8.0 |
|
https://access.redhat.com/errata/RHSA-2026:0752
https://access.redhat.com/security/cve/CVE-2025-66566
https://bugzilla.redhat.com/2419500
https://errata.almalinux.org/9/ALSA-2026-0752.html
https://github.com/yawkat/lz4-java
https://github.com/yawkat/lz4-java/commit/33d180cb70c4d93c80fb0dc3ab3002f457e93840
https://github.com/yawkat/lz4-java/security/advisories/GHSA-cmp6-m4wj-q63q
https://linux.oracle.com/cve/CVE-2025-66566.html
https://linux.oracle.com/errata/ELSA-2026-0752.html
https://nvd.nist.gov/vuln/detail/CVE-2025-66566
https://www.cve.org/CVERecord?id=CVE-2025-66566
|
| org.opensearch:opensearch-common |
CVE-2025-9624 |
HIGH |
3.1.0 |
3.3.0, 2.19.4 |
https://caverav.cl/posts/opensearch-dos/opensearch-dos
https://fluidattacks.com/advisories/chick
https://github.com/opensearch-project/OpenSearch
https://github.com/opensearch-project/OpenSearch/pull/19491
https://github.com/opensearch-project/OpenSearch/releases/tag/2.19.4
https://github.com/opensearch-project/OpenSearch/releases/tag/3.3.0
https://nvd.nist.gov/vuln/detail/CVE-2025-9624
https://opensearch.org/blog/explore-opensearch-3-3
|
| org.postgresql:postgresql |
CVE-2026-42198 |
HIGH |
42.7.7 |
42.7.11 |
https://access.redhat.com/security/cve/CVE-2026-42198
https://github.com/pgjdbc/pgjdbc
https://github.com/pgjdbc/pgjdbc/releases/tag/REL42.7.11
https://github.com/pgjdbc/pgjdbc/security/advisories/GHSA-98qh-xjc8-98pq
https://nvd.nist.gov/vuln/detail/CVE-2026-42198
https://www.cve.org/CVERecord?id=CVE-2026-42198
|
| org.springframework.boot:spring-boot |
CVE-2026-40973 |
HIGH |
3.4.7 |
4.0.6, 3.5.14 |
https://access.redhat.com/security/cve/CVE-2026-40973
https://github.com/spring-projects/spring-boot
https://nvd.nist.gov/vuln/detail/CVE-2026-40973
https://spring.io/security/cve-2026-40973
https://www.cve.org/CVERecord?id=CVE-2026-40973
|
| org.springframework.security:spring-security-core |
CVE-2026-22751 |
MEDIUM |
6.4.10 |
6.5.10, 7.0.5 |
https://access.redhat.com/security/cve/CVE-2026-22751
https://github.com/spring-projects/spring-security
https://github.com/spring-projects/spring-security/commit/163772775036c4146815a5266874278c6f45f047
https://github.com/spring-projects/spring-security/commit/4187af38b251fc97fdf9949f7869618111e6e261
https://nvd.nist.gov/vuln/detail/CVE-2026-22751
https://spring.io/security/cve-2026-22751
https://www.cve.org/CVERecord?id=CVE-2026-22751
|
| org.springframework.security:spring-security-core |
CVE-2026-22746 |
LOW |
6.4.10 |
6.5.10, 7.0.5 |
https://access.redhat.com/security/cve/CVE-2026-22746
https://github.com/spring-projects/spring-security
https://nvd.nist.gov/vuln/detail/CVE-2026-22746
https://spring.io/security/cve-2026-22746
https://www.cve.org/CVERecord?id=CVE-2026-22746
|
| org.springframework.security:spring-security-web |
CVE-2026-22732 |
CRITICAL |
6.4.7 |
6.5.9, 7.0.4 |
https://access.redhat.com/security/cve/CVE-2026-22732
https://github.com/spring-projects/spring-security
https://nvd.nist.gov/vuln/detail/CVE-2026-22732
https://spring.io/security/cve-2026-22732
https://www.cve.org/CVERecord?id=CVE-2026-22732
|
| org.springframework:spring-webflux |
CVE-2026-22737 |
MEDIUM |
6.2.8 |
7.0.6, 6.2.17 |
https://access.redhat.com/security/cve/CVE-2026-22737
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln/detail/CVE-2026-22737
https://spring.io/security/cve-2026-22737
https://www.cve.org/CVERecord?id=CVE-2026-22737
|
| org.springframework:spring-webflux |
CVE-2026-22745 |
MEDIUM |
6.2.8 |
7.0.7, 6.2.18 |
https://access.redhat.com/security/cve/CVE-2026-22745
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L&version=3.1
https://nvd.nist.gov/vuln/detail/CVE-2026-22745
https://spring.io/security/cve-2026-22745
https://www.cve.org/CVERecord?id=CVE-2026-22745
|
| org.springframework:spring-webflux |
CVE-2026-22735 |
LOW |
6.2.8 |
7.0.6, 6.2.17 |
https://access.redhat.com/security/cve/CVE-2026-22735
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln/detail/CVE-2026-22735
https://spring.io/security/cve-2026-22735
https://www.cve.org/CVERecord?id=CVE-2026-22735
|
| org.springframework:spring-webflux |
CVE-2026-22740 |
LOW |
6.2.8 |
7.0.7, 6.2.18 |
https://access.redhat.com/security/cve/CVE-2026-22740
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H&version=3.1
https://nvd.nist.gov/vuln/detail/CVE-2026-22740
https://spring.io/security/cve-2026-22740
https://www.cve.org/CVERecord?id=CVE-2026-22740
|
| org.springframework:spring-webflux |
CVE-2026-22741 |
LOW |
6.2.8 |
7.0.7, 6.2.18 |
https://access.redhat.com/security/cve/CVE-2026-22741
https://docs.spring.io/spring-framework/reference/web/webmvc/mvc-config/static-resources.html#page-title
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L&version=3.1
https://nvd.nist.gov/vuln/detail/CVE-2026-22741
https://spring.io/security/cve-2026-22741
https://www.cve.org/CVERecord?id=CVE-2026-22741
|
| org.springframework:spring-webmvc |
CVE-2026-22737 |
MEDIUM |
6.2.11 |
7.0.6, 6.2.17 |
https://access.redhat.com/security/cve/CVE-2026-22737
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln/detail/CVE-2026-22737
https://spring.io/security/cve-2026-22737
https://www.cve.org/CVERecord?id=CVE-2026-22737
|
| org.springframework:spring-webmvc |
CVE-2026-22745 |
MEDIUM |
6.2.11 |
7.0.7, 6.2.18 |
https://access.redhat.com/security/cve/CVE-2026-22745
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L&version=3.1
https://nvd.nist.gov/vuln/detail/CVE-2026-22745
https://spring.io/security/cve-2026-22745
https://www.cve.org/CVERecord?id=CVE-2026-22745
|
| org.springframework:spring-webmvc |
CVE-2026-22735 |
LOW |
6.2.11 |
7.0.6, 6.2.17 |
https://access.redhat.com/security/cve/CVE-2026-22735
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln/detail/CVE-2026-22735
https://spring.io/security/cve-2026-22735
https://www.cve.org/CVERecord?id=CVE-2026-22735
|
| org.springframework:spring-webmvc |
CVE-2026-22741 |
LOW |
6.2.11 |
7.0.7, 6.2.18 |
https://access.redhat.com/security/cve/CVE-2026-22741
https://docs.spring.io/spring-framework/reference/web/webmvc/mvc-config/static-resources.html#page-title
https://github.com/spring-projects/spring-framework
https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L&version=3.1
https://nvd.nist.gov/vuln/detail/CVE-2026-22741
https://spring.io/security/cve-2026-22741
https://www.cve.org/CVERecord?id=CVE-2026-22741
|
| No Misconfigurations found |
|---|