| No Vulnerabilities found |
|---|
| No Misconfigurations found |
|---|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.125.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
HIGH |
4.1.125.Final |
4.1.132.Final, 4.2.11.Final |
https://access.redhat.com/security/cve/CVE-2026-33871
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv
https://nvd.nist.gov/vuln/detail/CVE-2026-33871
https://www.cve.org/CVERecord?id=CVE-2026-33871
|
| net.sf.jasperreports:jasperreports |
CVE-2025-10492 |
HIGH |
6.21.5 |
7.0.4 |
https://community.jaspersoft.com/advisories/jaspersoft-security-advisory-september-16-2025-jaspersoft-library-cve-2025-10492-r6
https://community.jaspersoft.com/advisories/jaspersoft-security-advisory-september-16-2025-jaspersoft-library-cve-2025-10492-r6/
https://community.jaspersoft.com/forums/topic/69926-cve-2025-10492-%E2%80%93-no-fix-available-after-jasperreports-upgrade-community-edition
https://github.com/Jaspersoft/jasperreports
https://github.com/Jaspersoft/jasperreports/commit/3541a3e2b1ad8b78388ac505091da75cb652a647
https://github.com/Jaspersoft/jasperreports/commit/827c2f27c4ca8e2c5b3142d76df9c1c8575f3569
https://github.com/Jaspersoft/jasperreports/issues/542
https://nvd.nist.gov/vuln/detail/CVE-2025-10492
|
| org.apache.kafka:kafka-clients |
CVE-2026-35554 |
HIGH |
3.9.1 |
3.9.2, 4.0.2, 4.1.2 |
http://www.openwall.com/lists/oss-security/2026/04/07/6
https://access.redhat.com/security/cve/CVE-2026-35554
https://github.com/apache/kafka
https://github.com/apache/kafka/commit/1df2ac5b2ba4d1b5ed54b895ff6fb9539303ccb5
https://github.com/apache/kafka/pull/21065
https://github.com/apache/kafka/pull/21285
https://github.com/apache/kafka/pull/21286
https://github.com/apache/kafka/pull/21287
https://github.com/apache/kafka/pull/21288
https://issues.apache.org/jira/browse/KAFKA-19012
https://lists.apache.org/thread/f07x7j8ovyqhjd1to25jsnqbm6wj01d6
https://nvd.nist.gov/vuln/detail/CVE-2026-35554
https://www.cve.org/CVERecord?id=CVE-2026-35554
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-29145 |
CRITICAL |
11.0.12 |
9.0.116, 10.1.53, 11.0.20 |
http://www.openwall.com/lists/oss-security/2026/04/09/23
https://access.redhat.com/security/cve/CVE-2026-29145
https://github.com/apache/tomcat
https://lists.apache.org/thread/yz5fxmhd2j43wgqykssdo7kltws57jfz
https://nvd.nist.gov/vuln/detail/CVE-2026-29145
https://www.cve.org/CVERecord?id=CVE-2026-29145
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-24734 |
HIGH |
11.0.12 |
11.0.18, 10.1.52, 9.0.115 |
https://access.redhat.com/security/cve/CVE-2026-24734
https://github.com/apache/tomcat
https://lists.apache.org/thread/292dlmx3fz1888v6v16221kpozq56gml
https://nvd.nist.gov/vuln/detail/CVE-2026-24734
https://www.cve.org/CVERecord?id=CVE-2026-24734
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-34483 |
HIGH |
11.0.12 |
9.0.116, 10.1.54, 11.0.21 |
http://www.openwall.com/lists/oss-security/2026/04/09/26
https://access.redhat.com/security/cve/CVE-2026-34483
https://github.com/apache/tomcat
https://lists.apache.org/thread/j1w7304yonlr8vo1tkb5nfs7od1y228b
https://nvd.nist.gov/vuln/detail/CVE-2026-34483
https://www.cve.org/CVERecord?id=CVE-2026-34483
|
| org.apache.tomcat.embed:tomcat-embed-core |
CVE-2026-34487 |
HIGH |
11.0.12 |
9.0.117, 10.1.54, 11.0.21 |
http://www.openwall.com/lists/oss-security/2026/04/09/28
https://access.redhat.com/security/cve/CVE-2026-34487
https://github.com/apache/tomcat
https://lists.apache.org/thread/4xpkwolpkrj8v5xzp5nyovtlqp3y850h
https://nvd.nist.gov/vuln/detail/CVE-2026-34487
https://www.cve.org/CVERecord?id=CVE-2026-34487
|
| org.lz4:lz4-java |
CVE-2025-12183 |
HIGH |
1.8.0 |
1.8.1 |
http://www.openwall.com/lists/oss-security/2025/12/01/5
https://access.redhat.com/security/cve/CVE-2025-12183
https://github.com/yawkat/lz4-java
https://github.com/yawkat/lz4-java/releases/tag/v1.8.1
https://nvd.nist.gov/vuln/detail/CVE-2025-12183
https://sites.google.com/sonatype.com/vulnerabilities/cve-2025-12183
https://www.cve.org/CVERecord?id=CVE-2025-12183
https://www.sonatype.com/security-advisories/cve-2025-12183
|
| org.lz4:lz4-java |
CVE-2025-66566 |
HIGH |
1.8.0 |
|
https://access.redhat.com/errata/RHSA-2026:0752
https://access.redhat.com/security/cve/CVE-2025-66566
https://bugzilla.redhat.com/2419500
https://errata.almalinux.org/9/ALSA-2026-0752.html
https://github.com/yawkat/lz4-java
https://github.com/yawkat/lz4-java/commit/33d180cb70c4d93c80fb0dc3ab3002f457e93840
https://github.com/yawkat/lz4-java/security/advisories/GHSA-cmp6-m4wj-q63q
https://linux.oracle.com/cve/CVE-2025-66566.html
https://linux.oracle.com/errata/ELSA-2026-0752.html
https://nvd.nist.gov/vuln/detail/CVE-2025-66566
https://www.cve.org/CVERecord?id=CVE-2025-66566
|
| org.opensearch:opensearch-common |
CVE-2025-9624 |
HIGH |
3.1.0 |
3.3.0, 2.19.4 |
https://caverav.cl/posts/opensearch-dos/opensearch-dos
https://fluidattacks.com/advisories/chick
https://github.com/opensearch-project/OpenSearch
https://github.com/opensearch-project/OpenSearch/pull/19491
https://github.com/opensearch-project/OpenSearch/releases/tag/2.19.4
https://github.com/opensearch-project/OpenSearch/releases/tag/3.3.0
https://nvd.nist.gov/vuln/detail/CVE-2025-9624
https://opensearch.org/blog/explore-opensearch-3-3
|
| org.springframework.security:spring-security-web |
CVE-2026-22732 |
CRITICAL |
6.4.7 |
6.5.9, 7.0.4 |
https://access.redhat.com/security/cve/CVE-2026-22732
https://github.com/spring-projects/spring-security
https://nvd.nist.gov/vuln/detail/CVE-2026-22732
https://spring.io/security/cve-2026-22732
https://www.cve.org/CVERecord?id=CVE-2026-22732
|
| No Misconfigurations found |
|---|