26517 matches found
nautobot-device-resources (=1.0.0) potentially affected by CVE-2023-51649 via nautobot (=2.0.0)
nautobot PYPI version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on nautobot and may be impacted: - nautobot-device-resources =1.0.0 Source cves: CVE-2023-51649 Source advisory: OSV:GHSA-VF5M-XRHM-V999...
ai-dynamo-vllm (>=0.8.4 <=0.8.4.post4), arbor-ai (>=0.2.2 <=0.2.4) +36 more potentially affected by CVE-2025-57809 via xgrammar (>=0.1.11 <=0.1.19)
xgrammar PYPI version =0.1.11, =0.8.4, =0.2.2, =0.0.2, =0.1.1, =0.1.1, =0.0.2, =1.1.4, =0.1.1, =0.2.0a1, =0.1.2, =0.2.2 - lightrft =0.1.0 - llama-index-postprocessor-rankllm-rerank =0.6.2 and more Source cves: CVE-2025-57809 Source advisory: OSV:GHSA-5CMR-4PX5-23PC...
io.github.matrei:grails-inertia-plugin (=2.0.0), org.grails.plugins:gsp (>=6.0.1 <=6.0.3) +22 more potentially affected by CVE-2023-46131 via org.grails:grails-databinding (=6.0.0)
org.grails:grails-databinding MAVEN version =6.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.grails:grails-databinding and may be impacted: - io.github.matrei:grails-inertia-plugin =2.0.0 - org.grails.plugins:gsp =6.0.1, =6.0.3 -...
@csnext/cs-timeline (>=0.0.101-beta.22 <=0.0.132-beta.446), @net7/components (>=3.0.2-rc.2 <=4.3.2) +10 more potentially affected by CVE-2020-28487 via vis-timeline (>=5.1.0 <=7.4.2)
vis-timeline NPM version =5.1.0, =0.0.101-beta.22, =3.0.2-rc.2, =1.2.0, =8.0.0, =2.0.0, =1.3.0, =3.0.0, =1.0.0, =0.0.6, =0.1.0, =0.3.0 Source cves: CVE-2020-28487 Source advisory: OSV:GHSA-9MRV-456V-PF22...
org.bouncycastle:bcjmail-debug-jdk15to18 (>=1.81 <=1.83), org.bouncycastle:bcmail-debug-jdk15to18 (>=1.81 <=1.83) +4 more potentially affected by CVE-2025-14813 via org.bouncycastle:bcprov-debug-jdk15to18 (>=1.81 <=1.83)
org.bouncycastle:bcprov-debug-jdk15to18 MAVEN version =1.81, =1.81, =1.81, =1.81, =1.81, =1.81, =1.81, =1.83 Source cves: CVE-2025-14813 Source advisory: SNYK:JAVA-ORGBOUNCYCASTLE-16075262...
ailingo (>=0.2.0 <=0.4.0), async-scrape (>=0.1.19 <=0.1.20) +30 more potentially affected by CVE-2026-28350 via lxml-html-clean (>=0.1.0 <=0.4.3)
lxml-html-clean PYPI version =0.1.0, =0.2.0, =0.1.19, =0.3.1, =0.0.550, =0.1.0, =0.0.7, =0.2.0, =2.2.16, =0.9.0, =0.0.9, =0.6.0, =0.2.0, =0.2.3 and more Source cves: CVE-2026-28350 Source advisory: SNYK:PYTHON-LXMLHTMLCLEAN-15369131...
com.ascentstream.pulsar:bouncy-castle-bcfips (>=3.0.16.0 <=4.0.11.0), com.itextpdf:bouncy-castle-fips-adapter (>=9.0.0 <=9.2.0) +11 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcpkix-fips (>=2.0.10 <=2.0.7)
org.bouncycastle:bcpkix-fips MAVEN version =2.0.10, =3.0.16.0, =9.0.0, =4.0.7.1, =4.0.7.1, =3.0.15, =26.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0-beta1 Source cves: CVE-2025-8916 Source advisory: OSV:GHSA-4CX2-FC23-5WG6...
@directus/api (>=18.0.0 <=21.0.1) potentially affected by CVE-2024-45596 via directus (>=10.10.0 <=10.13.2)
directus NPM version =10.10.0, =18.0.0, =21.0.1 Source cves: CVE-2024-45596 Source advisory: OSV:GHSA-CFF8-X7JV-4FM8...
@directus/api (>=18.0.0 <=21.0.1) potentially affected by CVE-2024-46990 via directus (>=10.10.0 <=10.13.2)
directus NPM version =10.10.0, =18.0.0, =21.0.1 Source cves: CVE-2024-46990 Source advisory: OSV:GHSA-68G8-C275-XF2M...
@arcblock/gatsby-theme-docs (>=5.7.0 <=7.34.5), @changeinc/components (>=1.0.4 <=1.0.20) +87 more potentially affected by CVE-2025-3193 via algoliasearch-helper (>=2.13.0 <=2.2.0)
algoliasearch-helper NPM version =2.13.0, =5.7.0, =1.0.4, =1.0.4, =1.0.0, =2.2.1-custom, =0.0.7, =0.1.2, =0.1.4, =0.2.3, =0.2.1, =0.0.1, =2.0.0, =0.0.0, =1.9.0, =1.0.0, =1.4.2 and more Source cves: CVE-2025-3193 Source advisory: OSV:GHSA-529Q-4J3P-7C5R...
@teselagen/bio-parsers (>=0.1.24 <=0.4.29-beta.1), @teselagen/ove (>=0.0.18 <=0.8.13) +2 more potentially affected by unknown CVE via @teselagen/sequence-utils (>=0.1.19 <=0.3.32)
@teselagen/sequence-utils NPM version =0.1.19, =0.1.24, =0.0.18, =18.2.35, =18.3.6, =18.3.24 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENSEQUENCEUTILS-12761781...
org.apache.inlong:manager-client (>=1.1.0-incubating <=2.1.0), org.apache.inlong:manager-client-examples (>=1.1.0-incubating <=2.1.0) +3 more potentially affected by CVE-2025-27526 via org.apache.inlong:manager-common (>=1.13.0 <=2.1.0)
org.apache.inlong:manager-common MAVEN version =1.13.0, =1.1.0-incubating, =1.1.0-incubating, =1.1.0-incubating, =1.3.0, =1.13.0, =2.1.0 Source cves: CVE-2025-27526 Source advisory: SNYK:JAVA-ORGAPACHEINLONG-10255359...
20231122-npm (=1.0.0), @3dr/potree (=1.6.0) +3221 more potentially affected by CVE-2024-47178 via basic-auth-connect (=1.0.0)
basic-auth-connect NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on basic-auth-connect and may be impacted: - 20231122-npm =1.0.0 - @3dr/potree =1.6.0 - @inlimbo/nativeui =0.0.1, =0.0.0, =0.20.0, =0.0.1, =0.0.1, =0.0.1, =1.0.1, =0.0.1...
aiocronjob (>=0.6.0 <=0.7.0), identity-sdk (=0.1.0) +9 more potentially affected by CVE-2023-25578 via starlite (>=1.39.0 <=1.51.16)
starlite PYPI version =1.39.0, =0.6.0, =0.4.0, =0.5.1, =1.0.0, =0.1.0, =0.1.3, =1.0.0, =0.1.0, =0.8.1 - strawberry-graphql =0.168.0 Source cves: CVE-2023-25578 Source advisory: OSV:PYSEC-2023-49...
@3wks/gae-node-nestjs (>=0.1.3 <=5.2.0-rc3), @abyssaljs/plugin-graphql (>=0.1.1 <=0.5.0) +409 more potentially affected by unknown CVE via apollo-server-express (>=1.0.5 <=2.14.1)
apollo-server-express NPM version =1.0.5, =0.1.3, =0.1.1, =0.7.2-dev.409.01ecc9f.0, =0.7.2-dev.409.01ecc9f.0, =2018.8.28-0, =0.0.1, =0.1.0-alpha.10a87555, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0-latest.5b715197, =2.1.0, =5.4.3 and more Source cves: unknown CVE Source advisory: OSV:GHSA-W42G-7VFC-X...
org.noear:solon.luffy (>=3.1.2 <=3.1.3-RC) potentially affected by CVE-2025-46096 via org.noear:solon-faas-luffy (>=3.1.2 <=3.1.3-RC)
org.noear:solon-faas-luffy MAVEN version =3.1.2, =3.1.2, =3.1.3-RC Source cves: CVE-2025-46096 Source advisory: OSV:GHSA-M63Q-4HR8-5R5H...
raiden (>=0.100.2 <=0.100.3rc1) potentially affected by CVE-2025-30355 via matrix-synapse (=0.33.9)
matrix-synapse PYPI version =0.33.9 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-synapse and may be impacted: - raiden =0.100.2, =0.100.3rc1 Source cves: CVE-2025-30355 Source advisory: OSV:GHSA-V56R-HWV5-MXG6...
2broke2wait (=0.1.0), 2ch-fetcher-with-proxy (>=1.0.0 <=1.0.1) +4126 more potentially affected by CVE-2021-23449 via vm2 (>=1.0.1 <=3.9.3)
vm2 NPM version =1.0.1, =1.0.0, =15.0.0, =5.1.3, =1.0.2, =1.0.1, =0.1.0, =0.1.0, =0.1.0, =0.0.1, =0.2.48, =0.12.5-20190619040852, =0.2.46, =0.24.1-20230627140514 and more Source cves: CVE-2021-23449 Source advisory: OSV:GHSA-RJF2-J2R6-Q8GR...
com.avast.grpc:grpc-json-bridge-http4s_2.12 (>=0.18.8 <=0.19.0), com.avast:sst-app-monix_2.12 (>=0.17.0 <=0.19.3) +44 more potentially affected by CVE-2021-41084 via org.http4s:http4s-server_2.12 (>=0.22.0 <=0.22.4)
org.http4s:http4s-server2.12 MAVEN version =0.22.0, =0.18.8, =0.17.0, =0.17.0, =0.12.0, =0.17.0, =0.12.0, =0.17.0, =0.12.0, =0.12.0, =0.17.0, =0.17.0, =0.12.0, =0.12.0, =0.12.0, =0.1.1, =5.0.0-PREVIEW.pvfixrelease.2025-12-09T1243.b669d29d and more Source cves: CVE-2021-41084 Source advisory:...
bit-docs-generate-html (>=0.0.1 <=0.7.1), bit-docs-generate-searchmap (>=0.0.1-0 <=0.2.0-pre.3) +5 more potentially affected by CVE-2021-23429 via transpile (>=0.9.7 <=2.4.0-pre.0)
transpile NPM version =0.9.7, =0.0.1, =0.0.1-0, =0.5.0, =5.0.0, =0.16.6, =1.4.0-pre.1 Source cves: CVE-2021-23429 Source advisory: OSV:GHSA-7XRJ-F5RP-J55H...
@saltcorn/cli (>=1.6.0-alpha.0 <=1.6.0-alpha.17), @saltcorn/mobile-builder (>=1.6.0-alpha.0 <=1.6.0-alpha.17) potentially affected by unknown CVE via @saltcorn/server (>=1.6.0-alpha.0 <=1.6.0-alpha.9)
@saltcorn/server NPM version =1.6.0-alpha.0, =1.6.0-alpha.0, =1.6.0-alpha.0, =1.6.0-alpha.17 Source cves: unknown CVE Source advisory: SNYK:JS-SALTCORNSERVER-16318352...
@bloggrify/bento (>=0.9.5 <=1.0.0), @bloggrify/core (>=1.6.0 <=2.0.2) +29 more potentially affected by CVE-2025-69874 via nanotar (=0.1.1)
nanotar NPM version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on nanotar and may be impacted: - @bloggrify/bento =0.9.5, =1.6.0, =1.3.1, =1.2.2, =0.1.2, =51.0.1, =0.3.14, =9.8.3, =1.12.0-rc.5, =0.0.0, =1.1.1, =0.50.0, =0.50.0, =51.0.2 and mor...
2vyper (=0.3.0), ape-dasy (=0.1.0) +30 more potentially affected by CVE-2025-47774 via vyper (>=0.1.0b12 <=0.4.1)
vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =1.21.0 and more Source cves: CVE-2025-47774 Source advisory: SNYK:PYTHON-VYPER-10183409...
org.sakaiproject.scheduler:scheduler-assembly (>=2.9.0 <=2.9.3), org.sakaiproject.scheduler:scheduler-test-component-shared (>=2.9.0 <=23.3) +2 more potentially affected by CVE-2025-62710 via org.sakaiproject.scheduler:scheduler-component-shared (>=10.3 <=2.9.3)
org.sakaiproject.scheduler:scheduler-component-shared MAVEN version =10.3, =2.9.0, =2.9.0, =2.9.0, =2.3.0, =11.4 Source cves: CVE-2025-62710 Source advisory: SNYK:JAVA-ORGSAKAIPROJECTSCHEDULER-13669872...
2vyper (=0.3.0), ape-dasy (=0.1.0) +30 more potentially affected by CVE-2024-24560 via vyper (>=0.1.0b12 <=0.4.0)
vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =1.20.7 and more Source cves: CVE-2024-24560 Source advisory: OSV:PYSEC-2024-148...
matrix-appservice-irc (=0.36.0) potentially affected by CVE-2023-38691 via matrix-appservice-bridge (=6.0.0)
matrix-appservice-bridge NPM version =6.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-appservice-bridge and may be impacted: - matrix-appservice-irc =0.36.0 Source cves: CVE-2023-38691 Source advisory: OSV:GHSA-VC7J-H8XG-FV5X...
@csnext/cs-timeline (>=0.0.101-beta.22 <=0.0.132-beta.446), @net7/components (>=3.0.2-rc.2 <=4.3.2) +4 more potentially affected by CVE-2020-28487 via vis-timeline (>=7.1.3 <=7.4.2)
vis-timeline NPM version =7.1.3, =0.0.101-beta.22, =3.0.2-rc.2, =2.0.0, =1.3.0, =3.1.1-build1667201258, =3.1.2-build1667201375 Source cves: CVE-2020-28487 Source advisory: SNYK:JS-VISTIMELINE-1063500...
09-nodejs (=1.0.0), 11.17r (=1.0.0) +1749 more potentially affected by unknown CVE via concat-stream (>=1.5.0 <=1.5.1)
concat-stream NPM version =1.5.0, =0.0.1, =1.0.1, =0.0.2, =0.0.1, =0.1.0, =0.1.0, =1.0.1-0.beta.1, =1.0.0-beta.1, =1.1.5-beta.4 - @arezooq/webserverpackage =1.0.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-G74R-FFVR-5Q9F...
@clerk/agent-toolkit (>=0.3.1-canary.v20260303211310 <=0.3.16-snapshot.v20260416221307), @clerk/astro (>=3.0.1-canary.v20260303211310 <=3.0.18-snapshot.v20260421194054) +9 more potentially affected by CVE-2026-42349 via @clerk/backend (>=3.0.0 <=3.2.14-snapshot.v20260421194054)
@clerk/backend NPM version =3.0.0, =0.3.1-canary.v20260303211310, =3.0.1-canary.v20260303211310, =2.0.1-canary.v20260303211310, =3.0.1-canary.v20260303211310, =0.0.3-canary.v20260303211310, =7.0.1-canary.v20260303211310, =2.0.1-canary.v20260303211310, =3.0.1-canary.v20260303211310,...
at.yawk.dropwizard-nagios:dropwizard-nagios (=1.0), be.fluid-it.microservice.bundle:microservice-bundle-core (>=0.1-1 <=0.1-16) +699 more potentially affected by CVE-2020-11002 via io.dropwizard:dropwizard-validation (>=0.7.0-rc1 <=1.3.20)
io.dropwizard:dropwizard-validation MAVEN version =0.7.0-rc1, =0.1-1, =0.1-1, =0.1-9, =0.1-5, =0.8-1-1, =0.0.105, =0.7.0.3, =1.0, =0.1.0, =0.2.0, =0.7.0 and more Source cves: CVE-2020-11002 Source advisory: OSV:GHSA-8JPX-M2WH-2V34...
4337-snap (>=0.1.0 <=0.1.1), @0xabcdefg/smart-order-router (>=1.0.0 <=1.0.5) +1473 more potentially affected by CVE-2023-34234 via @openzeppelin/contracts (>=4.3.0 <=4.9.0)
@openzeppelin/contracts NPM version =4.3.0, =0.1.0, =1.0.0, =1.0.0, =3.24.7, =1.7.2, =0.107.10, =1.9.0, =0.107.0, =0.107.0, =0.107.0, =0.69.0, =0.107.0, =0.97.1, =0.107.0, =0.107.0, =0.123.2 and more Source cves: CVE-2023-34234 Source advisory: OSV:GHSA-5H3X-9WVQ-W4M2...
@antv/g-canvas (>=2.0.0 <=2.0.52), @antv/g-canvaskit (>=1.0.0 <=1.0.51) +7 more potentially affected by unknown CVE via @antv/g-plugin-canvas-renderer (>=2.0.0 <=2.5.1)
@antv/g-plugin-canvas-renderer NPM version =2.0.0, =2.0.0, =1.0.0, =1.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.58 - @antv/g6 =5.0.46 - @antv/s2 =2.4.12-alpha.1 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVGPLUGINCANVASRENDERER-16754430...
@saltcorn/admin-models (>=1.5.0 <=1.5.0-rc.2), @saltcorn/base-plugin (>=1.5.0 <=1.5.0-rc.2) +5 more potentially affected by unknown CVE via @saltcorn/data (>=1.5.0-beta.0 <=1.5.0)
@saltcorn/data NPM version =1.5.0-beta.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0, =1.5.0-rc.2 Source cves: unknown CVE Source advisory: OSV:GHSA-9237-RG5P-RHFW...
2vyper (=0.3.0), ape-safe (=0.6.0) +27 more potentially affected by CVE-2023-32059 via vyper (>=0.1.0b12 <=0.3.7)
vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.7.2, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =0.2.1, =0.3.5 and more Source cves: CVE-2023-32059 Source advisory: OSV:GHSA-PH9X-4VC9-M39G...
animl (>=1.1.2 <=1.1.4), audio-classification-models (=1.0.1) +7 more potentially affected by CVE-2022-21734 via tensorflow-gpu (>=2.6.0 <=2.6.2)
tensorflow-gpu PYPI version =2.6.0, =1.1.2, =0.1.5, =0.1.0, =0.9.0, =1.0.5, =1.0.6 Source cves: CVE-2022-21734 Source advisory: OSV:PYSEC-2022-113...
langflow-nightly (=1.8.0.dev24) potentially affected by CVE-2026-5027 via langflow-base (=0.7.2)
langflow-base PYPI version =0.7.2 is affected by a known vulnerability. The following packages have a transitive dependency on langflow-base and may be impacted: - langflow-nightly =1.8.0.dev24 Source cves: CVE-2026-5027 Source advisory: SNYK:PYTHON-LANGFLOWBASE-15842030...
siddheshtea (=1.1.6) potentially affected by unknown CVE via muklis-51 (=1.0.0)
muklis-51 NPM version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on muklis-51 and may be impacted: - siddheshtea =1.1.6 Source cves: unknown CVE Source advisory: OSV:MAL-2025-160837...
org.apache.inlong:manager-client (>=1.3.0 <=2.0.0), org.apache.inlong:manager-client-examples (>=1.3.0 <=2.0.0) +2 more potentially affected by CVE-2025-27531 via org.apache.inlong:manager-pojo (>=1.13.0 <=2.0.0)
org.apache.inlong:manager-pojo MAVEN version =1.13.0, =1.3.0, =1.3.0, =1.3.0, =1.13.0, =2.0.0 Source cves: CVE-2025-27531 Source advisory: SNYK:JAVA-ORGAPACHEINLONG-10350439...
org.apache.nifi:nifi-mongodb-processors (>=2.0.0 <=2.2.0), org.apache.nifi:nifi-mongodb-services-nar (>=1.4.0 <=2.2.0) potentially affected by CVE-2025-27017 via org.apache.nifi:nifi-mongodb-services (>=1.13.0 <=2.2.0)
org.apache.nifi:nifi-mongodb-services MAVEN version =1.13.0, =2.0.0, =1.4.0, =2.2.0 Source cves: CVE-2025-27017 Source advisory: SNYK:JAVA-ORGAPACHENIFI-9403308...
@better-auth/cli (>=0.0.1 <=1.1.20-beta.5), @silgi/better-auth (>=0.0.5 <=0.0.12) +3 more potentially affected by CVE-2025-27143 via better-auth (>=0.4.10-beta.10 <=1.1.20-beta.5)
better-auth NPM version =0.4.10-beta.10, =0.0.1, =0.0.5, =1.1.368, =1.1.0, =1.1.2-fix.1 - better-auth-monitor =1.0.0 Source cves: CVE-2025-27143 Source advisory: OSV:GHSA-HJPM-7MRM-26W8...
aggmap (>=1.1.1 <=1.2.1), molmap (>=1.3.1 <=1.4.0) potentially affected by CVE-2022-41891 via tensorflow-gpu (=2.9.1)
tensorflow-gpu PYPI version =2.9.1 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - aggmap =1.1.1, =1.3.1, =1.4.0 Source cves: CVE-2022-41891 Source advisory: OSV:GHSA-66VQ-54FQ-6JVV...
@antv/l7 (>=2.1.13 <=2.25.10), @antv/l7-component (>=2.0.0-beta.1 <=2.25.10) +13 more potentially affected by unknown CVE via @antv/l7-utils (>=2.0.0-beta.1 <=2.25.9)
@antv/l7-utils NPM version =2.0.0-beta.1, =2.1.13, =2.0.0-beta.1, =2.0.0-beta.1, =2.1.13, =2.1.13, =2.10.0, =2.1.13, =2.10.0, =2.1.13, =2.1.13, =2.1.13, =2.0.0-beta.1, =2.10.0, =1.0.0, =1.0.17, =1.0.18 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVL7UTILS-16754432...
@lint-md/cli (>=0.0.1 <=0.1.4), @lint-md/eslint-plugin (>=0.0.1 <=0.0.3) +4 more potentially affected by unknown CVE via ast-plugin (>=0.0.1 <=0.0.7)
ast-plugin NPM version =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2, =0.1.0, =0.1.2 - yuque-lint =0.0.1 Source cves: unknown CVE Source advisory: SNYK:JS-ASTPLUGIN-16755062...
fast-label-studio (>=0.1.0 <=0.4.0), label-studio-paddleocr (>=0.1.0 <=0.2.0) +1 more potentially affected by CVE-2025-5173 via label-studio-ml (=1.0.9)
label-studio-ml PYPI version =1.0.9 is affected by a known vulnerability. The following packages have a transitive dependency on label-studio-ml and may be impacted: - fast-label-studio =0.1.0, =0.1.0, =0.2.0 - phenocv =0.1.0 Source cves: CVE-2025-5173 Source advisory: OSV:GHSA-55G9-6C2X-GF8Q...
org.jboss.narayana.rts:lra-coordinator (>=5.10.0.Final <=5.10.6.Final), org.jboss.narayana.rts:lra-coordinator-jar-jakarta (>=5.13.1.Alpha1 <=5.13.1.Final) +7 more potentially affected by CVE-2024-8447 via org.jboss.narayana.rts:lra-coordinator-jar (>=5.10.0.Final <=7.0.2.Final)
org.jboss.narayana.rts:lra-coordinator-jar MAVEN version =5.10.0.Final, =5.10.0.Final, =5.13.1.Alpha1, =5.11.0.Final, =5.10.5.Final, =5.12.1.Final, =29.0.0.Alpha1, =28.0.0.Beta1, =28.0.0.Beta1, =28.0.0.Beta1, =28.0.1.Final Source cves: CVE-2024-8447 Source advisory: OSV:GHSA-QQ9F-Q439-2574...
@antv/f6 (>=0.0.3 <=0.0.19), fhrons-mobile (>=1.1.2-5.2 <=1.2.4-beta.5) +2 more potentially affected by unknown CVE via @antv/f6-element (=0.0.1)
@antv/f6-element NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f6-element and may be impacted: - @antv/f6 =0.0.3, =1.1.2-5.2, =2.0.1, =1.0.0, =1.0.2 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVF6ELEMENT-16755017...
a-mailx (=0.1.0), ai-security-analyzer (>=0.0.45 <=0.0.55) +16 more potentially affected by CVE-2025-67644 via langgraph-checkpoint-sqlite (>=1.0.4 <=3.0.0)
langgraph-checkpoint-sqlite PYPI version =1.0.4, =0.0.45, =0.1.0a2, =0.4.3, =0.1.0a1, =0.0.2, =0.1.0, =0.1.0, =0.1.0, =1.3.41 and more Source cves: CVE-2025-67644 Source advisory: OSV:GHSA-9RWJ-6RC7-P77C...
ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=3.4.0 <=7.4.3), ca.uhn.hapi.fhir:hapi-fhir-cli-app (>=5.6.5 <=7.4.3) +234 more potentially affected by CVE-2024-45294 +1 more via ca.uhn.hapi.fhir:org.hl7.fhir.r5 (>=0.0.1 <=6.3.22)
ca.uhn.hapi.fhir:org.hl7.fhir.r5 MAVEN version =0.0.1, =3.4.0, =5.6.5, =4.1.0, =4.0.3, =4.1.0, =4.0.0, =5.0.0, =4.0.0, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =5.3.0, =4.0.0, =5.5.7 and more Source cves: CVE-2024-45294, CVE-2024-52007 Source advisory: OSV:GHSA-6CR6-PH3P-F5RF...
@enonic/semantic-ui-react-form (>=2.1.0 <=2.3.0) potentially affected by CVE-2019-10747 +1 more via set-value (=4.0.0)
set-value NPM version =4.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on set-value and may be impacted: - @enonic/semantic-ui-react-form =2.1.0, =2.3.0 Source cves: CVE-2019-10747, CVE-2021-23440 Source advisory: SNYK:JS-SETVALUE-1540541...
vantage6-algorithm-store (>=4.3.0 <=4.15.1rc1), vantage6-node (>=0.0.0 <=4.15.1rc1) +1 more potentially affected by CVE-2026-54445 via vantage6 (>=0.0.0 <=4.9.1)
vantage6 PYPI version =0.0.0, =4.3.0, =0.0.0, =0.0.0, =4.15.1rc1 Source cves: CVE-2026-54445 Source advisory: OSV:GHSA-FGMC-2HQJ-86V4...