26517 matches found
com.airbus-cyber-security.graylog:graylog-plugin-aggregation-count (>=1.1.0 <=4.1.1), com.airbus-cyber-security.graylog:graylog-plugin-alert-wizard (>=1.0.0 <=6.1.7) +12 more potentially affected by unknown CVE via org.graylog2:graylog2-server (>=1.0.0-beta.3 <=6.1.8)
org.graylog2:graylog2-server MAVEN version =1.0.0-beta.3, =1.1.0, =1.0.0, =1.1.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1, =2.2.0, =1.1.0, =2.2.0, =2.2.0, =1.0.3, =1.0.0, =1.2.0, =1.3.4 Source cves: unknown CVE Source advisory: OSV:GHSA-Q9Q2-3PPX-MWQF...
be.yildiz-games:module-messaging-activemq (=2.0.0), com.codbex.atlas:codbex-atlas-application (>=1.1.0 <=2.110.0) +77 more potentially affected by CVE-2025-27533 via org.apache.activemq:activemq-openwire-legacy (>=6.0.0 <=6.1.5)
org.apache.activemq:activemq-openwire-legacy MAVEN version =6.0.0, =1.1.0, =2.55.0, =1.0.5, =1.1.0, =1.1.0, =1.1.0, =0.2.0, =1.1.0, =0.2.2, =1.4.0, =6.0.0, =6.1.5 and more Source cves: CVE-2025-27533 Source advisory: OSV:GHSA-WHXR-3P84-RF3C...
org.jboss.hal:hal-standalone (>=3.5.0.Final <=3.7.10.Final) potentially affected by CVE-2025-2901 via org.jboss.hal:hal-console (>=3.5.0.Final <=3.7.10.Final)
org.jboss.hal:hal-console MAVEN version =3.5.0.Final, =3.5.0.Final, =3.7.10.Final Source cves: CVE-2025-2901 Source advisory: OSV:GHSA-F7JH-M6WP-JM7F...
@oconva/qvikchat (>=1.0.0 <=2.0.0-alpha.4), genkit-intro (=1.0.0) +3 more potentially affected by unknown CVE via @genkit-ai/firebase (=0.5.17)
@genkit-ai/firebase NPM version =0.5.17 is affected by a known vulnerability. The following packages have a transitive dependency on @genkit-ai/firebase and may be impacted: - @oconva/qvikchat =1.0.0, =0.0.1, =1.0.0 Source cves: unknown CVE Source advisory: SNYK:JS-GENKITAIFIREBASE-12671227...
net.aequologica.neo:dagr-vebchar (=0.5.2-alpha), net.aequologica.neo:dagr-web (=0.5.2-alpha) +108 more potentially affected by CVE-2025-0716 via org.webjars.npm:angular (>=1.2.32 <=1.8.3)
org.webjars.npm:angular MAVEN version =1.2.32, =0.5.2, =0.5.2, =5.2.0-RC1, =5.2.0, =5.2.0, =5.2.0, =5.2.0, =0.4.0, =1.1.3 and more Source cves: CVE-2025-0716 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-9919775...
@cedarjs/api-server (>=0.0.4 <=9.0.0-canary.1784), @cedarjs/cli (>=0.0.4 <=9.0.0-canary.1784) +65 more potentially affected by unknown CVE via @escape.tech/graphql-armor-cost-limit (>=1.7.0 <=2.4.1)
@escape.tech/graphql-armor-cost-limit NPM version =1.7.0, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.0.4, =0.9.1-next.19, =0.0.4, =0.0.4, =0.0.2, =1.0.6, =2.0.6, =2.2.2, =2.19.6 and more Source cves: unknown CVE Source advisory: OSV:GHSA-733V-P3H5-QPQ7...
10xanswers (>=1.1.0 <=1.1.16), 31g-form-parser (=1.0.107) +3358 more potentially affected by CVE-2025-43865 via react-router (>=7.0.0-pre.0 <=7.5.1)
react-router NPM version =7.0.0-pre.0, =1.1.0, =1.0.0, =0.0.6, =0.0.1, =0.1.0, =3.1.0-beta.1, =1.0.0, =0.0.2, =1.0.0, =1.0.1, =5.0.8 and more Source cves: CVE-2025-43865 Source advisory: OSV:GHSA-CPJ6-FHP6-MR6J...
com.gitee.zodiacstack.base:zodiac-base-sdk-net (=1.7.1), com.matecoder:juggle-core (>=1.6.0 <=1.6.1) +31 more potentially affected by CVE-2025-5889 via org.webjars.npm:brace-expansion (>=2.0.2 <=5.0.6)
org.webjars.npm:brace-expansion MAVEN version =2.0.2, =1.6.0, =5.0.0, =5.0.0, =1.1.4, =0.3.2, =1.0.4, =3.1.6, =8.0.3, =11.1.0 and more Source cves: CVE-2025-5889 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-10360988...
be.personify.iam:personify-frontend (>=1.5.4.RELEASE <=1.5.7.RELEASE), ch.admin.bit.jeap:jeap-archrepo-instance (>=1.12.0 <=1.14.0) +1656 more potentially affected by CVE-2025-22228 +1 more via org.springframework.security:spring-security-crypto (=6.4.4)
org.springframework.security:spring-security-crypto MAVEN version =6.4.4 is affected by a known vulnerability. The following packages have a transitive dependency on org.springframework.security:spring-security-crypto and may be impacted: - be.personify.iam:personify-frontend =1.5.4.RELEASE,...
com.almis.awe:awe-annotation (>=4.10.11 <=4.11.2), com.almis.awe:awe-annotations-spring-boot-starter (>=4.10.11 <=4.11.2) +152 more potentially affected by CVE-2025-22228 +1 more via org.springframework.security:spring-security-crypto (=6.3.8)
org.springframework.security:spring-security-crypto MAVEN version =6.3.8 is affected by a known vulnerability. The following packages have a transitive dependency on org.springframework.security:spring-security-crypto and may be impacted: - com.almis.awe:awe-annotation =4.10.11, =4.10.11, =4.10.1...
@chainlink/external-adapter-framework (>=1.7.5 <=1.7.7), @intuned/runtime (=1.3.15) +64 more potentially affected by CVE-2025-32442 via fastify (=4.29.0)
fastify NPM version =4.29.0 is affected by a known vulnerability. The following packages have a transitive dependency on fastify and may be impacted: - @chainlink/external-adapter-framework =1.7.5, =1.3.14-ts-runtime-helpers, =0.0.0-a2a-20250421213654, =3.32.1-beta.7, =0.0.2, =0.3.23, =1.1.26,...
org.open-metadata:openmetadata-dist (>=0.12.1 <=DEMO_BETA1), org.open-metadata:openmetadata-k8s-operator (>=1.12.0 <=1.13.0-snapshot) +2 more potentially affected by CVE-2024-55238 via org.open-metadata:openmetadata-service (>=DEMO_BETA1 <=1.4.1)
org.open-metadata:openmetadata-service MAVEN version =DEMOBETA1, =0.12.1, =1.12.0, =1.10.0, =1.13.0-snapshot - org.open-metadata:openmetadata-ui =0.12.1.preview Source cves: CVE-2024-55238 Source advisory: OSV:GHSA-X8PM-WRG2-MQMX...
ai.h2o:h2o-orc-parser (>=3.10.0.5 <=3.10.3.6), ai.hypergraph:kaliningraph-jvm (=0.2.1) +4768 more potentially affected by CVE-2025-30691 via org.graalvm.sdk:graal-sdk (>=22.0.0 <=24.0.0)
org.graalvm.sdk:graal-sdk MAVEN version =22.0.0, =3.10.0.5, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =0.8.38, =1.1.0 and more Source cves: CVE-2025-30691 Source advisory: SNYK:JAVA-ORGGRAALVMSDK-9728205htt...
autoxx (>=0.0.11 <=0.0.13), vuln-demo-math-ops (=1.0.0) potentially affected by CVE-2025-31491 via agpt (=0.2.2)
agpt PYPI version =0.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on agpt and may be impacted: - autoxx =0.0.11, =0.0.13 - vuln-demo-math-ops =1.0.0 Source cves: CVE-2025-31491 Source advisory: SNYK:PYTHON-AGPT-9802316...
actix-session-surrealdb (>=0.1.0 <=0.1.5) potentially affected by unknown CVE via surrealdb (=1.0.0-beta.9)
surrealdb CARGO version =1.0.0-beta.9 is affected by a known vulnerability. The following packages have a transitive dependency on surrealdb and may be impacted: - actix-session-surrealdb =0.1.0, =0.1.5 Source cves: unknown CVE Source advisory: OSV:GHSA-2CVJ-G5R5-JRRG...
2mxdev-gql-gateway (=1.0.0), @2mxdev/gql-gateway (>=1.0.0 <=4.0.2) +217 more potentially affected by CVE-2025-32031 via @apollo/gateway (>=0.10.4 <=2.10.0)
@apollo/gateway NPM version =0.10.4, =1.0.0, =1.0.0, =0.0.7, =0.0.1-feature-ci-publish.2, =0.0.1-feature-ci-publish.2, =0.6.5, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.0.1, =0.0.22 and more Source cves: CVE-2025-32031 Source advisory: OSV:GHSA-P2Q6-PWH5-M6JR...
acryl-datahub-airflow-plugin (>=0.10.5.2rc3 <=0.11.0rc1), aind-airflow-jobs (>=0.2.1 <=0.2.6) +22 more potentially affected by CVE-2025-30473 via apache-airflow-providers-common-sql (>=1.0.0 <=1.20.0)
apache-airflow-providers-common-sql PYPI version =1.0.0, =0.10.5.2rc3, =0.2.1, =0.11.0, =0.2.0, =0.0.1, =0.0.1, =0.3.1, =0.0.4, =0.0.1a0, =2.6.0, =1.0.0rc1, =0.0.36, =1.0.0rc1, =1.0.0, =2.5.1rc1 and more Source cves: CVE-2025-30473 Source advisory: OSV:GHSA-5R62-MJF5-XWHJ...
@angular/build (>=19.2.0 <=19.2.0-rc.0), @d-zero/builder (=5.0.0-alpha.39) +38 more potentially affected by CVE-2025-31486 via vite (>=6.1.0 <=6.1.3)
vite NPM version =6.1.0, =19.2.0, =1.0.7, =2.12.0, =2.12.0, =11.24.0, =0.0.1739797164641, =1.0.0, =0.0.0-experimental-989cf02-20250217-d62ba1cb, =0.0.0-experimental-80aadca-20250205-e2641483, =0.0.0-snapshot-1e670bae5105bde781e82aa2a8ee4f2dfc2446f0,...
@1kit/react (>=0.0.74 <=0.0.149), @1kit/ui (>=0.0.14 <=0.0.90) +763 more potentially affected by CVE-2025-3191 via react-draft-wysiwyg (>=1.10.0 <=1.15.0)
react-draft-wysiwyg NPM version =1.10.0, =0.0.74, =0.0.14, =1.0.7, =0.2.2, =1.0.0, =0.0.5, =0.1.2, =1.0.2, =1.0.0, =1.0.2, =2.0.54, =1.0.1-alpha.0, =1.0.3-alpha.0 and more Source cves: CVE-2025-3191 Source advisory: OSV:GHSA-FQ5X-7292-2P5R...
elyra (>=4.0.0rc0 <=4.0.0rc4), elyra-code-snippet-extension (>=3.0.0rc3 <=4.0.0rc2) +12 more potentially affected by CVE-2025-30370 via jupyterlab-git (>=0.24.0 <=0.50.2)
jupyterlab-git PYPI version =0.24.0, =4.0.0rc0, =3.0.0rc3, =3.14.0, =3.0.0rc3, =3.0.0rc3, =3.0.0rc3, =3.14.0, =4.0.0rc0, =0.4.0, =2.1.0, =0.1.30, =1.3.19, =3.16.1, =0.1.0, =0.2.9 Source cves: CVE-2025-30370 Source advisory: SNYK:PYTHON-JUPYTERLABGIT-9667341...
apss (>=0.1.0 <=0.3.0), hebo-mindspore (>=0.2.0 <=0.2.1) +12 more potentially affected by CVE-2025-3145 via mindspore (>=2.7.0 <=2.9.0)
mindspore PYPI version =2.7.0, =0.1.0, =0.2.0, =1.6.0, =0.2.0, =1.4.0, =0.0.12, =1.0.0, =0.0.1, =0.0.1, =0.1.0, =0.1.4 Source cves: CVE-2025-3145 Source advisory: SNYK:PYTHON-MINDSPORE-10361605...
@crabnebula/taurify-api (>=0.1.0 <=0.1.5), @huakunshen/kunkun-ip-info (=0.0.7) +13 more potentially affected by CVE-2025-31477 via @tauri-apps/plugin-shell (>=2.0.0-alpha.3 <=2.0.1)
@tauri-apps/plugin-shell NPM version =2.0.0-alpha.3, =0.1.0, =0.0.4, =0.0.4-alpha.5, =0.6.0, =0.4.0, =0.1.9, =0.0.2-alpha.0, =0.4.0, =0.0.1, =1.1.0, =2.6.1 Source cves: CVE-2025-31477 Source advisory: OSV:GHSA-C9PR-Q8GX-3MGP...
ColumnPack:ColumnPack-plugin (=1.0.3), CustomHistory:CustomHistory (>=1.1 <=1.3) +1820 more potentially affected by CVE-2025-31721 via org.jenkins-ci.main:jenkins-core (>=1.396 <=2.492.2)
org.jenkins-ci.main:jenkins-core MAVEN version =1.396, =1.1, =0.0.1, =1.0, =1.0, =0.0.1, =0.1.0, =1.0, =0.9, =1.3, =1.0.5.0, =1.0.6.1 and more Source cves: CVE-2025-31721 Source advisory: OSV:GHSA-WR6W-JXG7-QPFH...
aldryn-django (>=5.1.4.0 <=5.1.5.0), allianceauth (=5.0.0a1) +201 more potentially affected by CVE-2025-27556 via django (>=5.1.0 <=5.1.7)
django PYPI version =5.1.0, =5.1.4.0, =0.42.1, =1.0.0, =1.23.0, =0.2.0, =0.46.0, =0.2.0a1, =24.1.0, =0.2.0, =0.2.2 and more Source cves: CVE-2025-27556 Source advisory: OSV:GHSA-WQFG-M96J-85VM...
org.webjars.npm:datauri (>=1.1.0 <=2.0.0), org.webjars.npm:image-thumbnail (=1.0.15) +1 more potentially affected by unknown CVE via org.webjars.npm:image-size (>=0.5.5 <=2.0.0-alpha.1)
org.webjars.npm:image-size MAVEN version =0.5.5, =1.1.0, =2.7.1, =2.7.2 Source cves: unknown CVE Source advisory: SNYK:JAVA-ORGWEBJARSNPM-9634165...
@adobe/helix-importer (>=3.1.2 <=3.4.79), @adobe/helix-md2docx (>=2.1.38 <=2.1.107) +144 more potentially affected by CVE-2025-71319 via image-size (>=1.1.0 <=1.2.0)
image-size NPM version =1.1.0, =3.1.2, =2.1.38, =1.0.0, =2.4.3, =1.1.1, =1.0.0, =1.0.0-B001, =0.0.28, =2.17.13, =0.17.6, =1.16.10, =7.1.0, =0.0.1, =1.1.69, =5.0.0-alpha.27, =5.0.0-alpha.39 and more Source cves: CVE-2025-71319 Source advisory: OSV:GHSA-M5QC-5HW7-8VG7...
ai.h2o:h2o-hive (>=3.42.0.1 <=3.46.0.11), ai.onehouse:lakeview-sync-tool (>=0.18.5 <=0.30.0) +472 more potentially affected by CVE-2025-30065 via org.apache.parquet:parquet-avro (>=1.10.0 <=1.15.0)
org.apache.parquet:parquet-avro MAVEN version =1.10.0, =3.42.0.1, =0.18.5, =0.6.1.2, =0.1.1, =0.3.0, =1.0.0, =1.0.0, =1.2.3, =1.0.0-beta.2, =1.0.0, =1.0.0-beta.4, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2 and more Source cves: CVE-2025-30065 Source advisory: SNYK:JAVA-ORGAPACHEPARQUET-9638681...
com.atomikos:transactions-spring-boot-integration-tests (>=5.0.9 <=6.0.1), com.atomikos:transactions-spring-boot3-integration-tests (>=6.0.0 <=6.0.1) +158 more potentially affected by CVE-2025-27427 via org.apache.activemq:artemis-server (>=2.0.0 <=2.3.0)
org.apache.activemq:artemis-server MAVEN version =2.0.0, =5.0.9, =6.0.0, =2.2.1, =2.2.1, =2.2.2, =2.2.1, =2018.9.23, =2018.12.15, =2018.9.23, =2018.9.23, =0.0.1, =0.0.2, =1.14.2, =2.0.0, =6u3 and more Source cves: CVE-2025-27427 Source advisory: OSV:GHSA-3W85-5P9G-H334...
@aicblock/cli (>=1.0.0 <=1.0.1), @angular/build (>=19.2.1 <=20.0.0-next.3) +37 more potentially affected by CVE-2025-31125 via vite (>=6.2.0 <=6.2.3)
vite NPM version =6.2.0, =1.0.0, =19.2.1, =0.55.0, =0.21.2-4.1, =1.0.0, =1.0.410, =3.8.0, =5.0.0-alpha.40, =1.0.0-next.1, =3.0.0, =3.0.0-BETA.1 and more Source cves: CVE-2025-31125 Source advisory: OSV:GHSA-4R4M-QW57-CHR8...
io.hawt:hawtio-wildfly (=2.17.7), io.kokuwa.keycloak:keycloak-event-metrics (>=0.1.0 <=1.0.0) +133 more potentially affected by CVE-2024-12369 via org.wildfly.security:wildfly-elytron-http-oidc (>=1.17.0.Final <=2.2.8.Final)
org.wildfly.security:wildfly-elytron-http-oidc MAVEN version =1.17.0.Final, =0.1.0, =9.4.45.v20220203, =9.4.45.v20220203, =9.4.45.v20220203, =10.0.8, =12.0.1, =12.0.1, =12.0.1, =10.0.10, =13.0.0.CR1, =3.1.0.Final, =3.1.1.Alpha1 - org.jboss.resteasy.spring:galleon-feature-pack-layers-metadata-test...
br.eti.clairton:ds-test (>=1.0.1 <=1.2.1), br.unb.erlangms:ems_java (=1.0.8.8) +394 more potentially affected by CVE-2024-12369 via org.wildfly.security:wildfly-elytron (>=1.17.0.Final <=2.2.7.Final)
org.wildfly.security:wildfly-elytron MAVEN version =1.17.0.Final, =1.0.1, =1.6.10, =1.6.10, =2020.10.30-4240, =2020.10.30-4240, =6.2.0, =0.1.0, =1.0.1, =6.3.0, =0.2.10-wildfly15, =0.2.10-wildfly15, =0.2, =0.3...
de.gedoplan:baselibs-wildfly (=36.0.1_02), org.eclipse.jetty.documentation:code-examples (>=10.0.22 <=11.0.25) +16 more potentially affected by CVE-2024-12369 via org.wildfly.security:wildfly-elytron (>=2.3.0.Final <=2.6.0.Final)
org.wildfly.security:wildfly-elytron MAVEN version =2.3.0.Final, =10.0.22, =10.0.21, =10.0.21, =10.0.21, =10.0.21, =10.0.21, =26.0.0, =26.0.0, =26.0.0, =2.1.0.Final, =2.1.4.Final and more Source cves: CVE-2024-12369 Source advisory: OSV:GHSA-5565-3C98-G6JC...
fable3d (>=1.0.0 <=1.1.4), liblaf-melon (>=0.1.10 <=0.1.17) +4 more potentially affected by CVE-2025-2751 via pyassimp (=5.2.5)
pyassimp PYPI version =5.2.5 is affected by a known vulnerability. The following packages have a transitive dependency on pyassimp and may be impacted: - fable3d =1.0.0, =0.1.10, =0.2.1, =0.2.14, =0.1.4, =0.2.0, =0.2.1 Source cves: CVE-2025-2751 Source advisory: OSV:PYSEC-2025-162...
@0xvaibhav/--core (>=1.0.0 <=1.0.4), @0xvaibhav/divergent-node (>=0.0.1 <=0.0.3) +788 more potentially affected by CVE-2025-8020 via private-ip (>=1.0.5 <=3.0.2)
private-ip NPM version =1.0.5, =1.0.0, =0.0.1, =1.0.3, =0.0.1, =0.0.2, =9.3.0, =1.16.47, =1.16.47, =1.1.12, =1.16.33-beta-20241028-005826-60afb7c4, =1.16.47, =1.0.0, =1.16.47, =1.0.0, =1.0.35, =1.3.1 and more Source cves: CVE-2025-8020 Source advisory: SNYK:JS-PRIVATEIP-9510757...
composio-autogen (>=0.3.13 <=0.5.42), composio-camel (>=0.3.17 <=0.5.42) +13 more potentially affected by CVE-2024-8953 via composio-core (>=0.3.13 <=0.5.42)
composio-core PYPI version =0.3.13, =0.3.13, =0.3.17, =0.3.13, =0.3.13, =0.5.26, =0.3.13, =0.3.13, =0.3.13, =0.3.24, =0.3.13, =0.3.13, =0.3.13, =0.4.2, =0.3.24, =0.2.31, =0.2.40 Source cves: CVE-2024-8953 Source advisory: SNYK:PYTHON-COMPOSIOCORE-9637814...
ado-sfttrainer (>=1.0.1 <=1.8.0), aim-mlflow (>=0.1.0 <=0.2.1) +27 more potentially affected by CVE-2024-6851 via aim (>=3.17.4 <=4.0.3)
aim PYPI version =3.17.4, =1.0.1, =0.1.0, =0.1.0, =0.0.1, =4.46.1, =0.0.1, =0.0.3, =0.0.1, =1.1.5, =0.1.1, =0.22.0, =0.0.1, =0.0.1, =2.0.1, =2.0.7 and more Source cves: CVE-2024-6851 Source advisory: SNYK:PYTHON-AIM-9511132...
dsipts (>=1.1.5 <=1.1.19), llm-toys (=0.1.1) +2 more potentially affected by CVE-2024-12778 via aim (>=3.17.4 <=3.20.1)
aim PYPI version =3.17.4, =1.1.5, =0.0.20, =0.1.0, =0.5.6 Source cves: CVE-2024-12778 Source advisory: OSV:GHSA-35P3-6J45-PRWM...
3d-rcnet (>=0.2.2 <=0.2.3), aa-prepflow (>=0.1.0 <=0.1.1) +1052 more potentially affected by CVE-2024-10569 via gradio (>=4.0.0b15 <=6.9.0)
gradio PYPI version =4.0.0b15, =0.2.2, =0.1.0, =0.0.3, =0.1.5, =0.8.2.4, =0.2.1, =1.2.0, =0.1.0, =0.1.0, =0.1.0, =2.0.0, =0.1.4, =0.1.11 and more Source cves: CVE-2024-10569 Source advisory: SNYK:PYTHON-GRADIO-9487019...
ado-sfttrainer (>=1.0.1 <=1.8.0), aim-mlflow (>=0.1.0 <=0.2.1) +27 more potentially affected by CVE-2024-10110 via aim (>=3.17.4 <=4.0.3)
aim PYPI version =3.17.4, =1.0.1, =0.1.0, =0.1.0, =0.0.1, =4.46.1, =0.0.1, =0.0.3, =0.0.1, =1.1.5, =0.1.1, =0.22.0, =0.0.1, =0.0.1, =2.0.1, =2.0.7 and more Source cves: CVE-2024-10110 Source advisory: SNYK:PYTHON-AIM-9511139...
io.xuxiaowei.seata:seata-server (=2.1.0), org.apache.seata:seata-all (=2.1.0) +54 more potentially affected by CVE-2024-47552 via org.apache.seata:seata-config-core (=2.1.0)
org.apache.seata:seata-config-core MAVEN version =2.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.seata:seata-config-core and may be impacted: - io.xuxiaowei.seata:seata-server =2.1.0 - org.apache.seata:seata-all =2.1.0 -...
be.mogo.iam:mogo-provisioning (=1.0.1.RELEASE), be.personify.iam:personify-frontend (>=1.5.1.RELEASE <=1.5.2.RELEASE) +947 more potentially affected by CVE-2025-22228 via org.springframework.security:spring-security-crypto (>=6.1.0 <=6.1.1)
org.springframework.security:spring-security-crypto MAVEN version =6.1.0, =1.5.1.RELEASE, =2.1.0.RELEASE, =1.1.4.2, =3.0.6.4, =3.0.6.4, =3.0.6.4, =3.0.6.4, =3.0.6.4, =3.0.6.4, =3.1.0.5, =3.0.6.4, =3.0.6.4, =3.0.6.4, =3.1.1.3 and more Source cves: CVE-2025-22228 Source advisory:...
ai.driftkit:driftkit-chat-assistant-framework (>=0.5.0 <=0.8.7), ai.driftkit:driftkit-clients-spring-ai-starter (>=0.6.0 <=0.8.7) +3206 more potentially affected by CVE-2025-22228 via org.springframework.security:spring-security-crypto (>=6.3.0 <=6.3.7)
org.springframework.security:spring-security-crypto MAVEN version =6.3.0, =0.5.0, =0.6.0, =0.5.0, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.1, =cloud-0.3 and more Source cves: CVE-2025-22228 Source advisory: OSV:GHSA-MG83-C7GQ-RV5C...
cc.chensoul.nacos:nacos-distribution (=2.5.2), cn.sparrowmini:sparrow-org-service (=0.0.1) +618 more potentially affected by CVE-2025-22228 via org.springframework.security:spring-security-crypto (>=5.8.0 <=5.8.16)
org.springframework.security:spring-security-crypto MAVEN version =5.8.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.1 and more Source cves: CVE-2025-22228 Source advisory: OSV:GHSA-MG83-C7GQ-RV5Chttp...
app.valuationcontrol:library (>=0.5.8 <=0.5.9), at.aimon.ops:aimon-ops-api (>=0.0.1 <=0.0.2) +2791 more potentially affected by CVE-2025-22228 via org.springframework.security:spring-security-crypto (>=6.4.0 <=6.4.3)
org.springframework.security:spring-security-crypto MAVEN version =6.4.0, =0.5.8, =0.0.1, =0.0.1, =55.v51410e712e0c, =1.0.1, =1.0.2, =1.0.4, =1.0.2, =1.0.16, =1.0.2, =1.0.4, =2.3.0, =1.10.0, =1.10.0, =1.11.0 and more Source cves: CVE-2025-22228 Source advisory:...
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (>=0.2.0 <=0.28.0), ai.ancf.lmos:lmos-router-llm-in-spring-cloud-gateway-demo (=0.1.0) +5638 more potentially affected by CVE-2025-22228 via org.springframework.security:spring-security-crypto (>=6.0.0 <=6.3.7)
org.springframework.security:spring-security-crypto MAVEN version =6.0.0, =0.2.0, =0.5.0, =0.6.0, =0.5.0, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.4, =0.8.7 and more Source cves: CVE-2025-22228 Source advisory:...
be.ugent.idlab.knows:dataio (>=2.0.0 <=2.1.4), com.asemicanalytics:asemic-sql (>=1.0 <=1.13) +162 more potentially affected by CVE-2025-27496 via net.snowflake:snowflake-jdbc (>=3.10.2 <=3.23.0)
net.snowflake:snowflake-jdbc MAVEN version =3.10.2, =2.0.0, =1.0, =1.14, =1.1, =1.1.0, =1.0.5, =1.1.0, =1.1.0, =1.1.0, =0.2.0, =1.1.0, =0.3.0, =8.2.0-alpha.1, =0.1.0, =1.0.5-rc5 and more Source cves: CVE-2025-27496 Source advisory: SNYK:JAVA-NETSNOWFLAKE-9404321...
be.ugent.idlab.knows:dataio (>=2.0.0 <=2.1.4), com.asemicanalytics:asemic-sql (>=1.0 <=1.13) +162 more potentially affected by CVE-2025-27496 via net.snowflake:snowflake-jdbc (>=3.10.2 <=3.23.0)
net.snowflake:snowflake-jdbc MAVEN version =3.10.2, =2.0.0, =1.0, =1.14, =1.1, =1.1.0, =1.0.5, =1.1.0, =1.1.0, =1.1.0, =0.2.0, =1.1.0, =0.3.0, =8.2.0-alpha.1, =0.1.0, =1.0.5-rc5 and more Source cves: CVE-2025-27496 Source advisory: OSV:GHSA-Q298-375F-5Q63...
3gtel-frontend-platform (=1.0.0), 40dev-tools (=2.0.0) +2536 more potentially affected by CVE-2025-25975 via parse-git-config (>=0.1.0 <=3.0.0)
parse-git-config NPM version =0.1.0, =1.0.2, =4.2.1, =11.0.1, =1.2.0, =0.1.0, =0.0.1, =0.2.1, =0.0.2, =0.0.2, =0.6.0, =0.1.0, =1.0.0, =1.0.3 and more Source cves: CVE-2025-25975 Source advisory: OSV:GHSA-8G77-54RH-46HX...
com.abavilla:fpi-bot-api (>=1.6.0 <=1.8.5), com.abavilla:fpi-bot-api-parent (>=1.6.0 <=1.8.5) +204 more potentially affected by CVE-2025-2240 via io.smallrye:smallrye-fault-tolerance-core (>=6.0.0-RC1 <=6.8.0)
io.smallrye:smallrye-fault-tolerance-core MAVEN version =6.0.0-RC1, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.6.0, =1.6.0, =1.8.0, =1.8.0, =1.0.25, =1.0.25, =1.5.0, =1.5.0, =1.3.1, =1.3.1, =1.3.4, =1.3.13 and more Source cves: CVE-2025-2240 Source advisory: SNYK:JAVA-IOSMALLRYE-9460816...
com.qwlabs.doraemon:task-queue (>=0.3.0 <=0.3.37), io.apicurio:apicurio-registry-app (>=3.0.4 <=3.0.6) +94 more potentially affected by CVE-2025-2240 via io.smallrye:smallrye-fault-tolerance-core (>=6.3.0 <=6.4.1)
io.smallrye:smallrye-fault-tolerance-core MAVEN version =6.3.0, =0.3.0, =3.0.4, =3.0.4, =3.0.4, =3.0.4, =0.34.0, =4.0.2, =4.0.2, =4.0.2, =3.10.0, =3.10.0, =6.3.0, =6.3.0, =6.3.0, =6.3.0, =6.4.1 and more Source cves: CVE-2025-2240 Source advisory:...