4149 matches found
GHSA-57RV-R2G8-2CJ3 vulnerabilities
Vulnerabilities for packages: infinispan, apache-nifi-registry, akhq, keycloak, apache-activemq-artemis, apache-nifi, trino, apache-pulsar, strimzi-kafka-operator, zipkin, druid, apicurio-registry, docker-selenium, tez, wavefront-proxy, management-api-for-apache-cassandra-5.0, selenium,...
CVE-2026-42578 vulnerabilities
Vulnerabilities for packages: wildfly, akhq, keycloak, apache-activemq-artemis, apache-nifi, celeborn, trino, apache-pulsar, strimzi-kafka-operator, zipkin, druid, apicurio-registry, docker-selenium, tez, wavefront-proxy, cassandra, management-api-for-apache-cassandra-5.0, kserve-modelmesh,...
CVE-2026-42587 vulnerabilities
Vulnerabilities for packages: wildfly, infinispan, apache-nifi-registry, akhq, keycloak, apache-activemq-artemis, apache-nifi, trino, apache-pulsar, strimzi-kafka-operator, zipkin, druid, apicurio-registry, docker-selenium, tez, wavefront-proxy, management-api-for-apache-cassandra-5.0, selenium,...
GHSA-45Q3-82M4-75JR vulnerabilities
Vulnerabilities for packages: wildfly, akhq, keycloak, apache-activemq-artemis, apache-nifi, celeborn, trino, apache-pulsar, strimzi-kafka-operator, zipkin, druid, apicurio-registry, docker-selenium, tez, wavefront-proxy, cassandra, management-api-for-apache-cassandra-5.0, kserve-modelmesh,...
GHSA-F6HV-JMP6-3VWV vulnerabilities
Vulnerabilities for packages: wildfly, infinispan, apache-nifi-registry, akhq, keycloak, apache-activemq-artemis, apache-nifi, trino, apache-pulsar, strimzi-kafka-operator, zipkin, druid, apicurio-registry, docker-selenium, tez, wavefront-proxy, management-api-for-apache-cassandra-5.0, selenium,...
GHSA-HM32-HFMW-RHVG vulnerabilities
Vulnerabilities for packages: keycloak, keycloak-fips...
CVE-2026-7500 vulnerabilities
Vulnerabilities for packages: keycloak, keycloak-fips...
GHSA-M4CV-J2PX-7723 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
CVE-2026-42585 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
CVE-2026-42584 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
CVE-2026-42580 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
CVE-2026-42581 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
GHSA-38F8-5428-X5CV vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
GHSA-57RV-R2G8-2CJ3 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
GHSA-XXQH-MFJM-7MV9 vulnerabilities
Vulnerabilities for packages: hono, seata, spark-fips, keycloak, akhq, knative-kafka-broker-fips, flyway-fips, kayenta, apache-nifi, thingsboard, wavefront-proxy, camunda-zeebe, opensearch, opensearch-fips, nuxeo, spark, elasticsearch-fips, infinispan, kafbat-ui-fips, spark-kubernetes-operator,...
GHSA-98QH-XJC8-98PQ vulnerabilities
Vulnerabilities for packages: hono, seata, keycloak, guacamole-client, flyway-fips, kayenta, thingsboard, dependency-track, dependency-track-apiserver, camunda-zeebe, nacos-docker, nuxeo, nacos, debezium, apicurio-registry, camunda, keycloak-fips, geoserver, druid, kayenta-fips, ghidra, sonarqube...
CVE-2026-42198 vulnerabilities
Vulnerabilities for packages: hono, seata, keycloak, guacamole-client, flyway-fips, kayenta, thingsboard, dependency-track, dependency-track-apiserver, camunda-zeebe, nacos-docker, nuxeo, nacos, debezium, apicurio-registry, camunda, keycloak-fips, geoserver, druid, kayenta-fips, ghidra, sonarqube...
ai.stainless:grails-tika (=0.1.0), app.dassana:rule-engine (>=1.6.8 <=1.10.1) +1305 more potentially affected by CVE-2026-44242 via io.micronaut:micronaut-inject (>=1.0.0 <=4.10.21)
io.micronaut:micronaut-inject MAVEN version =1.0.0, =1.6.8, =1.4.0, =1.1.0, =0.3.8, =0.8.0, =0.9.1, =1.4.0, =2.0.8-micronaut-1.0, =1.3.7.6, =1.3.7.6, =1.7.3-micronaut-1.0, =1.6.2-micronaut-1.0, =2.0.0-micronaut-1.0, =2.2.2-micronaut-3.0 and more Source cves: CVE-2026-44242 Source advisory:...
com.abavilla:fpi-bot-api (>=1.6.0 <=1.6.2), com.abavilla:fpi-bot-api-parent (>=1.6.0 <=1.6.2) +17 more potentially affected by CVE-2026-39852 via io.quarkus:quarkus-keycloak-authorization (>=3.0.0.Alpha1 <=3.20.6)
io.quarkus:quarkus-keycloak-authorization MAVEN version =3.0.0.Alpha1, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.0.25, =1.0.25, =1.5.0, =1.5.0, =1.3.1, =1.3.1, =1.3.4, =1.3.7 and more Source cves: CVE-2026-39852 Source advisory: SNYK:JAVA-IOQUARKUS-16420251...
Incorrect Authorization
Overview Affected versions of this package are vulnerable to Incorrect Authorization when handling HTTP request paths that have had normalizedPath applied. An attacker can gain unauthorized access to protected resources by appending a semicolon and arbitrary text to the request URL, exploiting...