CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/06/10 12:31 a.m.•9 views

EUVD-2026-35909

8.1CVSS5.5AI score0.00347EPSS

Exploits0References2

NVD•added 2026/06/10 12:16 a.m.•9 views

CVE-2026-41732

8.1CVSS0.00347EPSS

CNNVD•added 2026/06/10 12:0 a.m.•12 views

VMware Spring for Apache Pulsar 代码问题漏洞

VMware Spring for Apache Pulsar is a Pulsar messaging integration framework developed by the company VMware. Versions of VMware Spring for Apache Pulsar such as 2.0.0, 1.2.0, and 1.1.0 have code vulnerabilities. These vulnerabilities stem from the use of JsonPulsarHeaderMapper to check header typ...

8.1CVSS5.7AI score0.00347EPSS

Exploits0References2

CVE•added 2026/06/09 11:49 p.m.•31 views

CVE-2026-41732

CVE-2026-41732 affects Spring for Apache Pulsar due to JsonPulsarHeaderMapper using a prefix-based check on trusted packages, causing trust to cascade to subpackages. An empty trusted-packages config can default to trusting all packages. This exposes potential deserialization risk by allowing acc...

8.1CVSS5.5AI score0.00347EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/06/09 11:49 p.m.•27 views

CVE-2026-41732 In Spring for Apache Pulsar, overly broad trusted-package matching in header mapper exposes JDK classes to deserialization

8.1CVSS0.00347EPSS

Vulnrichment•added 2026/06/09 11:49 p.m.•8 views

CVE-2026-41732 In Spring for Apache Pulsar, overly broad trusted-package matching in header mapper exposes JDK classes to deserialization

8.1CVSS5.4AI score0.00347EPSS

Chainguard•added 2026/06/09 1:17 p.m.•6 views

GHSA-W573-9FFJ-6FF9 vulnerabilities

Vulnerabilities for packages: cassandra-reaper, airbyte-server, thingsboard, seata, spark-kubernetes-operator, infinispan, zookeeper-fips, flyway, apache-pulsar, cassandra, trino, s3proxy-fips, kserve-modelmesh, spark, kafka, localstack, apache-hop, neo4j, management-api-for-apache-cassandra-4.1,...

Chainguard•added 2026/06/09 1:17 p.m.•6 views

CVE-2026-45673 vulnerabilities

Vulnerabilities for packages: airbyte-server, commercial-elasticsearch, thingsboard, seata, spark-kubernetes-operator, infinispan, knative-kafka-broker-fips, kafka-bridge, apache-pulsar, flyway, apicurio-registry, selenium, elasticsearch-fips, s3proxy-fips, trino, spark, apache-hop,...

6.8CVSS5.8AI score0.00256EPSS

Chainguard•added 2026/06/09 1:17 p.m.•16 views

CVE-2026-47244 vulnerabilities

Vulnerabilities for packages: airbyte-server, commercial-elasticsearch, thingsboard, seata, spark-kubernetes-operator, infinispan, knative-kafka-broker-fips, kafka-bridge, apache-pulsar, apicurio-registry, elasticsearch-fips, trino, kserve-modelmesh, spark, apache-camel-karavan-devmode, apache-ho...

5.3CVSS5.8AI score0.00292EPSS

Chainguard•added 2026/06/09 1:17 p.m.•10 views

GHSA-676X-F7GG-47VC vulnerabilities

Chainguard•added 2026/06/09 1:17 p.m.•8 views

GHSA-CC37-9Q2J-3HFV vulnerabilities

Vulnerabilities for packages: seata, knative-kafka-broker-fips, celeborn, apache-pulsar, apicurio-registry, trino, apache-hop, neo4j, management-api-for-apache-cassandra-4.1, keycloak-fips, zipkin, pinot, pinot-fips, request-9047-keycloak-fips, apache-hop-fips,...

Chainguard•added 2026/06/09 1:17 p.m.•8 views

GHSA-5PVG-856G-CP85 vulnerabilities

Chainguard•added 2026/06/09 1:17 p.m.•5 views

GHSA-5X3R-WRVG-RP6Q vulnerabilities

Vulnerabilities for packages: airbyte-server, commercial-elasticsearch, thingsboard, seata, spark-kubernetes-operator, infinispan, knative-kafka-broker-fips, kafka-bridge, apache-pulsar, apicurio-registry, elasticsearch-fips, trino, kserve-modelmesh, spark, apache-camel-karavan-devmode, apache-ho...

Chainguard•added 2026/06/09 1:17 p.m.•8 views

GHSA-XMV7-R254-6Q78 vulnerabilities

Chainguard•added 2026/06/09 1:17 p.m.•10 views

CVE-2026-45536 vulnerabilities

4CVSS5.8AI score0.00136EPSS