ai.hyacinth.framework:core-service-jpa-support (>=0.5.2 <=0.5.21), ai.hyacinth.framework:core-service-trigger-server (>=0.5.2 <=0.5.21) +3479 more potentially affected by CVE-2026-0603 via org.hibernate:hibernate-core (>=5.0.0.Beta1 <=5.3.37.Final)

org.hibernate:hibernate-core MAVEN version =5.0.0.Beta1, =0.5.2, =0.5.2, =1.0.0, =1.0.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.6 and more Source cves: CVE-2026-0603 Source advisory: SNYK:JAVA-ORGHIBERNATE-15038759...

CVE-2021-22098

UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along with redirection of UAA users to a malicious sites...

EUVD-2021-9259

Malicious code in bioql PyPI...

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +8694 more potentially affected by CVE-2023-22102 via mysql:mysql-connector-java (>=3.0.10 <=8.0.33)

mysql:mysql-connector-java MAVEN version =3.0.10, =0.5.0, =0.5.0, =0.1.0, =4.1.3, =0.0.13, =1.13.3, =j8.2.2.0, =Finchley.SR2.SR1, =1.0.0, =0.0.3, =0.0.5 and more Source cves: CVE-2023-22102 Source advisory: OSV:GHSA-M6VM-37G8-GQVH...

am.ik.home:uaa-client (>=1.0.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.0.0 <=1.9.0) +922 more potentially affected by CVE-2023-34036 via org.springframework.hateoas:spring-hateoas (>=0.12.0.RELEASE <=1.5.4)

org.springframework.hateoas:spring-hateoas MAVEN version =0.12.0.RELEASE, =1.0.0, =1.0.0, =1.0.0, =1.1.0, =1, =1, =1, =1, =1, =1, =1.0.1.RELEASE, =1.0.0.RELEASE, =1.0.1.RELEASE, =1.1.8.RELEASE, =1.1.5.RELEASE, =2.0.9.RELEASE and more Source cves: CVE-2023-34036 Source advisory:...

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +2382 more potentially affected by CVE-2017-3523 via mysql:mysql-connector-java (>=3.0.10 <=5.1.40)

mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.0, =1.1.5.RELEASE, =1.0.1, =0.0.1, =0.3.0, =0.2.0, =0.2.0, =0.4.1 and more Source cves: CVE-2017-3523 Source advisory: OSV:GHSA-2XXH-F8R3-HVVR...

am.ik.home:uaa-server (>=1.0.0 <=1.9.0), br.com.intelipost:sdk-java (>=0.0.1 <=0.0.8) +89 more potentially affected by CVE-2017-8046 via org.springframework.data:spring-data-rest-core (>=1.0.0.RELEASE <=2.6.8.RELEASE)

org.springframework.data:spring-data-rest-core MAVEN version =1.0.0.RELEASE, =1.0.0, =0.0.1, =1.0.0, =1.0.0, =2.3.0-RELEASE, =0.0.6, =0.0.1, =0.0.1, =1.0.0, =1.0.1-SNAPSHOTS - com.github.zengfr.project:com.github.zengfr.project.common =0.0.1 - com.github.zengfr.project:com.github.zengfr.project.p...

am.ik.home:uaa-client (>=1.3.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.3.0 <=1.9.0) +1072 more potentially affected by CVE-2017-4995 via org.springframework.security:spring-security-core (>=4.2.0.RELEASE <=4.2.2.RELEASE)

org.springframework.security:spring-security-core MAVEN version =4.2.0.RELEASE, =1.3.0, =1.3.0, =1.3.0, =1.1.1, =0.2.0, =1.0.3, =3.0.3, =3.0.3, =3.0.3, =3.0.5, =A.1.1.1, =A.2.0.0, =A.1.1.1, =A.2.0.0, =A.2.0.0.RC1 and more Source cves: CVE-2017-4995 Source advisory: OSV:GHSA-VHRG-V3CV-P247...

CVE-2021-22098

UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along with redirection of UAA users to a malicious sites...

CVE-2021-22098

UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along with redirection of UAA users to a malicious sites...

Open redirect

UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along with redirection of UAA users to a malicious sites...

CVE-2021-22098

CVE-2021-22098 affects Cloud Foundry UAA server. Versions prior to 75.4.0 are vulnerable to an open redirect vulnerability exploitable via social engineering, potentially leading to loss of user accounts and redirection to malicious sites. Practical impact is limited to cases described in vendor ...

CVE-2021-22098

UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along with redirection of UAA users to a malicious sites...

CVE-2021-22098: Open redirect vulnerability in UAA server | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Description UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victims’ accounts in certain cases along wit...

CVE-2021-22001

In UAA versions prior to 75.3.0, sensitive information like relaying secret of the provider was revealed in response when deletion request of an identity provider IdP of type “oauth 1.0” was sent to UAA server...

Cross site request forgery (csrf)

In UAA versions prior to 75.3.0, sensitive information like relaying secret of the provider was revealed in response when deletion request of an identity provider IdP of type “oauth 1.0” was sent to UAA server...

am.ik.home:uaa-client (>=1.0.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.0.0 <=1.9.0) +509 more potentially affected by CVE-2018-1260 via org.springframework.security.oauth:spring-security-oauth2 (>=2.0.0.RELEASE <=2.0.14.RELEASE)

org.springframework.security.oauth:spring-security-oauth2 MAVEN version =2.0.0.RELEASE, =1.0.0, =1.0.0, =1.0.0, =0.1.0, =1.0.0, =A.1.1.0, =A.1.1.0, =A.1.1.0, =A.1.1.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.1.11 - com.17jee:e-security-token =3.0.1.11 and more Source cves: CVE-2018-1260 Source...