18 matches found
be.yildiz-games:module-messaging-activemq (>=1.0.0 <=1.0.1), cn.codeforfun:jfinal-activemq (=0.3) +215 more potentially affected by CVE-2026-42253 via org.apache.activemq:activemq-all (>=5.0.0 <=5.19.6)
org.apache.activemq:activemq-all MAVEN version =5.0.0, =1.0.0, =6.0.03, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.3-rc1, =2.0.0, =3.0.0, =8.0.0, =2.0.0, =1.0.0, =1.0.1, =1.0.2 and more Source cves: CVE-2026-42253 Source advisory: SNYK:JAVA-ORGAPACHEACTIVEMQ-17151925...
io.github.bkoehm:apacheds-embedded (>=0.5 <=0.6), org.apache.activemq.examples.broker:security-ldap (>=2.24.0 <=2.31.1) +68 more potentially affected by CVE-2026-35563 via org.apache.directory.api:api-ldap-client-api (>=2.0.0 <=2.1.7)
org.apache.directory.api:api-ldap-client-api MAVEN version =2.0.0, =0.5, =2.24.0, =0.1.0, =4.7.0, =2.3.0, =1.1.0, =1.1.0, =1.1.0, =3.0.0, =3.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0.AM25, =2.0.0.AM25, =2.0.0.AM27 and more Source cves: CVE-2026-35563 Source advisory:...
com.github.fangjinuo.agileway:agileway-shiro-redis (>=2.3.3 <=3.1.12), com.github.fangjinuo.agileway:agileway-shiro-redis-springdata2 (>=2.4.2 <=3.1.12) +35 more potentially affected by CVE-2026-43828 via org.apache.shiro:shiro-core (=3.0.0-alpha-1)
org.apache.shiro:shiro-core MAVEN version =3.0.0-alpha-1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.shiro:shiro-core and may be impacted: - com.github.fangjinuo.agileway:agileway-shiro-redis =2.3.3, =2.4.2, =0.0.3, =0.0.3, =0.0.3, =0.0....
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (=0.28.0), ai.ancf.lmos:lmos-operator (>=0.0.4 <=0.4.0) +4629 more potentially affected by CVE-2026-22741 via org.springframework:spring-webmvc (>=6.1.0 <=6.1.21)
org.springframework:spring-webmvc MAVEN version =6.1.0, =0.0.4, =0.5.0, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.7.5, =0.8.3, =0.7.0, =0.5.0, =0.5.0, =0.5.0, =cloud-0.1, =cloud-0.2.1 and more Source cves: CVE-2026-22741 Source advisory: OSV:GHSA-WG35-8JPF-2XV3...
br.com.archbase:archbase-annotation-processor (>=2.0.0 <=2.1.18), br.com.archbase:archbase-app-framework (>=2.0.0 <=2.1.18) +1590 more potentially affected by CVE-2026-22751 via org.springframework.security:spring-security-core (>=6.5.0 <=6.5.1)
org.springframework.security:spring-security-core MAVEN version =6.5.0, =2.0.0, =2.0.0, =2.0.0, =2.0.1, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.1.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.1.18 and more Source cves: CVE-2026-22751 Source advisory: OSV:GHSA-X2WQ-9X2F-FHJ7...
ai.grakn:grakn-dist (>=0.7.0 <=0.16.0), ai.grakn:grakn-test (=0.10.0) +2403 more potentially affected by CVE-2024-52979 via org.elasticsearch:elasticsearch (>=0.6.0 <=7.17.24)
org.elasticsearch:elasticsearch MAVEN version =0.6.0, =0.7.0, =0.6.1, =0.11.0, =j11.2.6.0, =0.3.0, =1.0.1, =5.1.0, =5.6.5, =5.1.0, =5.3.0, =5.1.0, =5.1.0, =5.1.0, =6.10.5 and more Source cves: CVE-2024-52979 Source advisory: OSV:GHSA-MM3M-5497-XGGG...
com.charlyghislain.keycloak:keycloak-importexport (>=21.0.0 <=23.0.1), com.github.vzakharchenko:chillispot-radius-plugin (>=1.4.10 <=1.4.11) +95 more potentially affected by CVE-2024-4540 via org.keycloak:keycloak-services (>=1.0-alpha-1 <=24.0.4)
org.keycloak:keycloak-services MAVEN version =1.0-alpha-1, =21.0.0, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.4.10, =1.0.1, =1.1.23, =0.3.0-20.0.1, =0.4.5-20.0.2, =2.7.4-24.0 and more Source cves: CVE-2024-4540 Source advisory: OSV:GHSA-69FP-7C8P-CRJR...
ai.libs.thirdparty:interruptible-meka (>=0.1.0 <=0.1.2), ai.rev.speechtotext:revai-java-sdk-speechtotext (>=1.0.0 <=1.4.0) +13296 more potentially affected by CVE-2022-4244 via org.codehaus.plexus:plexus-utils (>=1.0.4 <=3.0.23)
org.codehaus.plexus:plexus-utils MAVEN version =1.0.4, =0.1.0, =1.0.0, =2.1.0, =0.0.13, =1.13.3, =1.0.0, =1.1.1, =1.0.0, =1.0, =1.3 - at.makubi.maven.plugin:rpm-systemd-maven-plugin =1.0.1 - at.molindo:git-commit-id-plugin =2.1.10-alpha-1 and more Source cves: CVE-2022-4244 Source advisory:...
MGASA-2023-0230 Updated maven packages fix security vulnerability
No longer use http non-SSL repository references by default...
com.github.mizosoft.methanol:benchmarks (>=1.1.0 <=1.2.0), com.github.mizosoft.methanol:methanol-testutils (>=1.1.0 <=1.2.0) +35 more potentially affected by CVE-2023-33201 via org.bouncycastle:bcprov-debug-jdk15on (>=1.53 <=1.70)
org.bouncycastle:bcprov-debug-jdk15on MAVEN version =1.53, =1.1.0, =1.1.0, =0.8.635, =0.8.635, =0.8.635, =0.8.635, =0.0.1, =4.4.0, =1.3.8, =1.3.7, =1.3.7, =1.3.8, =1.4.0 - de.ohmesoftware:keytool =0.0.2 and more Source cves: CVE-2023-33201 Source advisory: OSV:GHSA-HR8G-6V94-X4M9...
cn.jrack:jrack-metadata-clickhouse (>=1.0.0 <=1.0.10), cn.jrack:jrack-test (>=1.0.0 <=1.0.10) +46 more potentially affected by CVE-2024-23689 via com.clickhouse:clickhouse-client (>=0.3.2-patch1 <=0.4.5)
com.clickhouse:clickhouse-client MAVEN version =0.3.2-patch1, =1.0.0, =1.0.0, =0.2.6, =2.10.6.9, =0.3.2, =0.3.2-patch11, =0.3.2, =0.3.2, =0.3.2, =0.3.2, =2.0.0, =0.0.1, =0.0.2 and more Source cves: CVE-2024-23689 Source advisory: OSV:GHSA-G8PH-74M6-8M7R...
ai.ylyue:yue-library-auth-client (>=j8.2.3.0 <=j11.2.3.3), ai.ylyue:yue-library-auth-service (>=j8.2.3.0 <=j11.2.3.3) +3254 more potentially affected by CVE-2021-22118 via org.springframework:spring-web (>=5.2.0.RELEASE <=5.2.14.RELEASE)
org.springframework:spring-web MAVEN version =5.2.0.RELEASE, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =j8.2.3.0, =2.3.0.RELEASE, =2.3.0.RELEASE, =2.3.0.RELEASE, =2.3.0.RELEASE, =2.3.1.RELEASE -...
at.molindo:etcd-client (=0.1), br.com.ingenieux:beanstalk-maven-plugin (=1.4.0) +476 more potentially affected by CVE-2013-4366 via org.apache.httpcomponents:httpclient (>=4.3 <=4.3-beta2)
org.apache.httpcomponents:httpclient MAVEN version =4.3, =1.2.0, =1.3.3, =3.0.0, =3.1.1 - com.amazonaws.resources:aws-resources =0.0.3 - com.amazonaws.resources:aws-resources-core =0.0.3 - com.amazonaws.resources:aws-resources-ec2 =0.0.3 - com.amazonaws.resources:aws-resources-glacier =0.0.3 -...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +5132 more potentially affected by CVE-2013-6430 via org.springframework:spring-web (>=1.2.1 <=3.2.1.RELEASE)
org.springframework:spring-web MAVEN version =1.2.1, =1.1, =0.0.1, =1.0, =0.0.20, =1.0.0-alpha-1, =1.0, =2.0, =1.1.1, =1.0.2, =1.1.2, =1.2, =1.3 and more Source cves: CVE-2013-6430 Source advisory: OSV:GHSA-XJRF-8X4F-43H4...
com.crealytics:spark-excel_2.11 (>=0.9.6 <=0.11.1), com.gizbel.excel:excel-extractor (>=1.0.0 <=1.0.1) +148 more potentially affected by CVE-2022-23640 via com.monitorjbl:xlsx-streamer (>=0.2.9 <=2.0.0)
com.monitorjbl:xlsx-streamer MAVEN version =0.2.9, =0.9.6, =1.0.0, =3.0.3, =1.1.1, =1.1.0, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.1.2 - com.webank.wedatasphere.dss:dss-appjoint-auth =0.6.0 and more Source cves: CVE-2022-23640 Source advisory: OSV:GHSA-XVM2-9XVC-HX7F...
Netty 环境问题漏洞
Netty is a non-blocking I/O client-server framework from the Netty community that is primarily used to develop Java web applications such as protocol servers and clients. Netty suffers from an environment issue vulnerability that stems from not removing vulnerable maven packages from image conten...
cn.net.vidyo:dylink-vidyo-ws-sdk (>=2.1.0.16.RELEASE <=3.0.0.3.RELEASE), com.aftia.plugin:aem-build-maven-plugin.core (>=1.2.1 <=1.2.2) +286 more potentially affected by CVE-2012-5784 via org.apache.axis:axis (=1.4)
org.apache.axis:axis MAVEN version =1.4 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.axis:axis and may be impacted: - cn.net.vidyo:dylink-vidyo-ws-sdk =2.1.0.16.RELEASE, =1.2.1, =1.0.0, =1.4-build003, =0.9.1, =0.0.3.M1, =0.0.3.M1,...
au.com.turingg:turingg-files (=0.0.1), au.com.turingg:turingg-mimak (=1.0.0) +444 more potentially affected by CVE-2018-1339 via org.apache.tika:tika-parsers (>=0.4 <=1.17)
org.apache.tika:tika-parsers MAVEN version =0.4, =4.2.0, =3.6.1, =3.11.0, =5.6.100, =2.0.6, =1.0.10, =1.0.8, =0.1, =1.2.3, =2.2 and more Source cves: CVE-2018-1339 Source advisory: OSV:GHSA-P699-3WGC-7H72...