ae.teletronics.nlp:entityextraction (>=1.3 <=1.4), ai.stainless:grails-tika (=0.1.0) +737 more potentially affected by CVE-2025-54988 +1 more via org.apache.tika:tika-parsers (>=1.13 <=1.9)

org.apache.tika:tika-parsers MAVEN version =1.13, =1.3, =1.0.1, =3.6.1, =3.11.0, =4.6.0, =8.10.1.3, =8.10.1.3, =8.10.1.3, =0.1, =0.1, =0.2.4 and more Source cves: CVE-2025-54988, CVE-2025-66516 Source advisory: SNYK:JAVA-ORGAPACHETIKA-14188256...

Linux Distros Unpatched Vulnerability : CVE-2020-2654

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1...

cn.jarkata:jarkata-encrypt (=1.0.0), cn.ponfee:commons-core (>=1.1 <=1.4) +477 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcprov-ext-jdk18on (>=1.71 <=1.78.1)

org.bouncycastle:bcprov-ext-jdk18on MAVEN version =1.71, =1.1, =2.4.1, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50, =3.0.7.0-SNAPSHOT-a030c50,...

ae.teletronics.nlp:entityextraction (>=1.3 <=1.4), ai.h2o:h2o-app (>=0.1.22 <=0.1.25) +1039 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcprov-jdk15 (>=1.38 <=1.46)

org.bouncycastle:bcprov-jdk15 MAVEN version =1.38, =1.3, =0.1.22, =0.1.22, =1.0.0, =2.1.0, =1.0.1, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.1.2, =1.0.3, =1.3.3 - cn.dceast.platform:platform-security-starter =2.2.3 and more Source cves: CVE-2025-8916 Source advisory:...

com.github.lansheng228:aws-crypto (=1.0.3), com.github.yadickson:autocert (>=2.0.0 <=2.0.2) +35 more potentially affected by CVE-2025-8885 via org.bouncycastle:bcprov-ext-jdk15to18 (>=1.64 <=1.76)

org.bouncycastle:bcprov-ext-jdk15to18 MAVEN version =1.64, =2.0.0, =1.4.0, =1.4.0, =1.4.0, =1.4.0, =1.4.1, =12.31.0, =v9.6.6, =v9.6.6, =v9.6.6, =v9.6.6, =v9.6.6, =v9.6.6, =v9.6.7 and more Source cves: CVE-2025-8885 Source advisory: SNYK:JAVA-ORGBOUNCYCASTLE-11777848...

io.github.sparql-anything:sparql-anything-fuseki (>=v1.0-DEV.3 <=v1.0.0), io.telicent.jena.graphql:graphql-fuseki-module (>=0.6.0 <=0.10.4) +12 more potentially affected by CVE-2025-50151 via org.apache.jena:jena-fuseki-main (>=5.0.0-rc1 <=5.4.0)

org.apache.jena:jena-fuseki-main MAVEN version =5.0.0-rc1, =v1.0-DEV.3, =0.6.0, =1.3.2, =0.72.1, =0.71.2, =0.71.2, =1.0.0, =0.80.0, =0.80.0, =1.2.0, =5.0.0, =5.0.0, =5.4.0 - zone.cogni.semanticz:semanticz-connector-fuseki =2.0.0 - zone.cogni.semanticz:semanticz-connectors-spring =2.0.0 Source cve...

com.ing.baker:bakery-interaction-k8s-interaction-manager_2.13 (>=3.6.2 <=5.0.0), com.ing.baker:bakery-state-k8s_2.13 (=3.5.0) +8 more potentially affected by CVE-2025-53393 via com.typesafe.akka:akka-cluster-metrics_2.13 (>=2.6.11 <=2.9.0-M2)

com.typesafe.akka:akka-cluster-metrics2.13 MAVEN version =2.6.11, =3.6.2, =3.5.0, =22.10.0, =0.1.6, =0.1.0-beta4, =2.9.1, =3.30.0, =3.31.0 Source cves: CVE-2025-53393 Source advisory: SNYK:JAVA-COMTYPESAFEAKKA-10567746...

com.farao-community.farao:csa-runner-api (>=2.1.0 <=2.6.1), com.farao-community.farao:csa-runner-app (>=1.2.1 <=2.6.1) +146 more potentially affected by CVE-2025-47293 via com.powsybl:powsybl-iidm-serde (>=6.1.0-alpha-1 <=6.7.1)

com.powsybl:powsybl-iidm-serde MAVEN version =6.1.0-alpha-1, =2.1.0, =1.2.1, =4.20.0, =4.20.0, =4.31.0 - com.farao-community.farao:farao-distribution =5.0.0 - com.farao-community.farao:farao-flowbased-computation-impl =5.0.0 - com.farao-community.farao:farao-glsk-virtual-hubs =5.0.0 -...

ai.aitia:arrowhead-application-library-java-spring (>=4.4.0.0 <=4.4.0.1), ai.dstack:server-base-local (>=0.0.12 <=0.1.15) +12158 more potentially affected by CVE-2025-35036 via org.hibernate.validator:hibernate-validator (>=6.0.0.Alpha1 <=6.1.7.Final)

org.hibernate.validator:hibernate-validator MAVEN version =6.0.0.Alpha1, =4.4.0.0, =0.0.12, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =j8.2.2.0, =j8.2.3.0, =Finchley.SR2.SR1, =Finchley.SR4, =j11.2.4.0 and more Source cves: CVE-2025-35036 Source advisory:...

ai.pipestream:quarkus-grpc-gatherer-deployment (>=0.1.0 <=0.1.1), ch.admin.bit.jeap:jeap-archrepo-importer-messagetype (>=1.10.0 <=1.23.0) +181 more potentially affected by CVE-2025-4949 via org.eclipse.jgit:org.eclipse.jgit (=7.1.0.202411261347-r)

org.eclipse.jgit:org.eclipse.jgit MAVEN version =7.1.0.202411261347-r is affected by a known vulnerability. The following packages have a transitive dependency on org.eclipse.jgit:org.eclipse.jgit and may be impacted: - ai.pipestream:quarkus-grpc-gatherer-deployment =0.1.0, =1.10.0, =1.10.0,...

be.yildiz-games:module-messaging-activemq (=1.0.15), com.chutneytesting:action-impl (>=2.2.1 <=3.0.0) +114 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-client (>=5.18.0 <=5.18.6)

org.apache.activemq:activemq-client MAVEN version =5.18.0, =2.2.1, =2.2.1, =2.2.2, =2.2.1, =2.0.0, =0.4.4, =0.4.4, =0.28.0, =2.0.0, =3.0.0, =0.17.0, =0.19.12-2023-11-12, =0.19.20-2024-11-05, =0.19.12-2023-11-12, =RC-1.0.0.RC4+2025-05-15 and more Source cves: CVE-2025-27533 Source advisory:...

com.gitee.zodiacstack.base:zodiac-base-sdk-net (=1.7.1), com.matecoder:juggle-core (>=1.6.0 <=1.6.1) +31 more potentially affected by CVE-2025-5889 via org.webjars.npm:brace-expansion (>=2.0.2 <=5.0.5)

org.webjars.npm:brace-expansion MAVEN version =2.0.2, =1.6.0, =5.0.0, =5.0.0, =1.1.4, =0.3.2, =1.0.4, =3.1.6, =8.0.3, =11.1.0 and more Source cves: CVE-2025-5889 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-10360988...

au.com.turingg:turingg-files (=0.0.1), au.com.turingg:turingg-mimak (=1.0.0) +874 more potentially affected by CVE-2025-27553 via org.apache.commons:commons-vfs2 (>=2.0 <=2.1)

org.apache.commons:commons-vfs2 MAVEN version =2.0, =0.0.4, =1.0.0, =1.0.0, =3.6.1, =3.11.0, =1.0-alpha-1, =1.0-alpha-1, =0.5, =0.5.1 and more Source cves: CVE-2025-27553 Source advisory: SNYK:JAVA-ORGAPACHECOMMONS-9511703...

ai.superstream:kafka-clients (>=3.0.1 <=3.6.1-alpha1), ai.superstream:spring-kafka (>=2.8.4-alpha1 <=3.0.1-alpha1) +1819 more potentially affected by CVE-2020-36843 via net.i2p.crypto:eddsa (>=0.1.0 <=0.3.0)

net.i2p.crypto:eddsa MAVEN version =0.1.0, =3.0.1, =2.8.4-alpha1, =0.0.1-alpha1, =0.0.6, =2.1.2, =2.1.2, =2.2, =1.1.0-dev-3, =1.10.0, =1.10.0, =1.15.0, =1.10.0, =1.10.0, =1.10.0, =1.10.0, =1.23.0 and more Source cves: CVE-2020-36843 Source advisory: OSV:GHSA-P53J-G8PW-4W5F...

com.alilitech:boot-plus-log (>=2.1.0 <=2.1.5), com.github.linyuzai:concept-plugin-spring-boot-starter (>=2.0.0 <=3.0.0) +19 more potentially affected by CVE-2025-27152 via org.webjars.npm:axios (>=1.15.2 <=1.7.2)

org.webjars.npm:axios MAVEN version =1.15.2, =2.1.0, =2.0.0, =1.0.3, =1.0.0, =2.1.1, =1.0.0, =1.0.0, =2.1.3, =2.0.0, =1.0.2, =4.22.2, =4.22.2, =0.0.1, =1.0.0 - org.webjars.npm:posthog-node =4.17.1 and more Source cves: CVE-2025-27152 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-9403195...

io.peekandpoke.funktor:all-jvm (>=0.86.0 <=0.107.2), io.peekandpoke.funktor:insights-jvm (>=0.86.0 <=0.107.2) +3 more potentially affected by CVE-2024-53382 via org.webjars.npm:prismjs (>=1.23.0 <=1.29.0)

org.webjars.npm:prismjs MAVEN version =1.23.0, =0.86.0, =0.86.0, =0.86.0, =15.4.3, =3.3.1, =3.6.0 Source cves: CVE-2024-53382 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-9055449...

com.databricks:automatedml_2.11 (=0.7.2), com.github.aishfenton:vegas-flink_2.11 (=0.3.4) +11 more potentially affected by CVE-2025-25304 via org.webjars.bower:vega (>=1.5.4 <=3.0.0-rc4)

org.webjars.bower:vega MAVEN version =1.5.4, =0.3.6, =0.3.6, =0.3.6, =1.1.0, =2.1.0, =1.0.10, =2.0.1 Source cves: CVE-2025-25304 Source advisory: SNYK:JAVA-ORGWEBJARSBOWER-8730845...

OESA-2024-2485 openjdk-latest security update

The OpenJDK runtime environment. Security Fixes: Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows...

be.zvz:KotlinInside (>=1.14.0 <=1.16.2), com.connectrpc:connect-kotlin-google-javalite-ext (>=0.2.0 <=0.5.1) +14 more potentially affected by CVE-2024-7254 via com.google.protobuf:protobuf-kotlin-lite (>=3.17.1 <=3.25.3)

com.google.protobuf:protobuf-kotlin-lite MAVEN version =3.17.1, =1.14.0, =0.2.0, =16.0.0-alpha01, =7.7.1, =7.7.1, =0.2.19, =2.1.23, =0.1.0, =0.3.1, =0.1.1, =0.1.1, =3.23.2, =0.100.0, =0.130.1 and more Source cves: CVE-2024-7254 Source advisory: OSV:GHSA-735F-PC8J-V9W8...

be.jidoka:jdk-keycloak-admin (>=1.2.0 <=2.3.0), br.com.anteros:Anteros-Keycloak (=1.0.0) +1033 more potentially affected by CVE-2023-6841 via org.keycloak:keycloak-core (>=10.0.0 <=23.0.7)

org.keycloak:keycloak-core MAVEN version =10.0.0, =1.2.0, =0.0.8-alpha, =0.0.1-alpha, =1.0.0, =0.2.0, =0.2.0, =0.2.0, =0.5.0, =0.2.0, =0.2.0, =0.5.0, =0.10.0, =0.10.0, =0.5.0, =0.10.5-experimental and more Source cves: CVE-2023-6841 Source advisory: OSV:GHSA-W97F-W3HQ-36G2...