Lucene search
K

CLEANSTART-2026-KP10590 Security fixes for CVE-2024-22257, CVE-2024-38821, CVE-2024-47561, CVE-2025-7962, CVE-2026-3505, CVE-2026-5588, ghsa-3677-xxcr-wjqv, ghsa-qqpg-mvqg-649v, ghsa-x44p-gvrj-pj2r applied in versions: 1.25.0-r0, 1.25.0-r1, 2.7.2-r0

🗓️ 18 May 2026 13:30:42Reported by GoogleType 
osv
 osv
🔗 osv.dev👁 10 Views

Security fixes for several vulnerabilities in apache-nifi, resolved in versions 1.25.0-r0 to 2.7.2-r0.

Related
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins
Security Bulletin: IBM WebSphere Application Server shipped with Jazz for Service Management (JazzSM) is affected by SMTP injection due to Jakarta Mail
7 Nov 202511:01
ibm
IBM Security Bulletins
Security Bulletin: IBM Asset Data Dictionary uses multiple third party dependencies which is vulnerable to CVEs.
6 Feb 202505:30
ibm
IBM Security Bulletins
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for February 2025.
12 Mar 202511:26
ibm
IBM Security Bulletins
Security Bulletin: IBM Operational Decision Manager for May 2024 - Multiple CVEs addressed
14 Jun 202409:53
ibm
IBM Security Bulletins
Security Bulletin: IBM SPSS Analytic Server is affected by SMTP injection due to Jakarta Mail in IBM WebSphere Application Server Liberty (CVE-2025-7962)
7 Jan 202604:07
ibm
IBM Security Bulletins
Security Bulletin: A vulnerability in WebSphere Application Server Liberty affects IBM Enterprise Application Service for Java (CVE-2025-7962)
17 Dec 202514:30
ibm
IBM Security Bulletins
Security Bulletin: IBM WebSphere Application Server, which is bundled with IBM Enterprise Application Runtimes, is affected by an SMTP injection vulnerability due to Jakarta Mail (CVE-2025-7962)
17 Nov 202515:12
ibm
IBM Security Bulletins
Security Bulletin: IBM Engineering Test Management is affected by IBM WebSphere Application Server and Liberty are affected by SMTP injection(CVE-2025-7962)
25 Mar 202612:17
ibm
IBM Security Bulletins
Security Bulletin: Multiple Security Vulnerabilities in IBM Sterling Partner Engagement Manager
16 Dec 202507:00
ibm
IBM Security Bulletins
Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to arbitrary code execution due to Apache Avro (CVE-2024-47561)
29 Apr 202513:35
ibm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

28 May 2026 22:15Current
7High risk
Vulners AI Score7
CVSS 3.17.5 - 9.1
CVSS 49.2
EPSS0.03278
SSVC
10