26517 matches found
card-ocr-fastmcp (=1.0.0) potentially affected by CVE-2025-9262 via @wong2/mcp-cli (=1.13.0)
@wong2/mcp-cli NPM version =1.13.0 is affected by a known vulnerability. The following packages have a transitive dependency on @wong2/mcp-cli and may be impacted: - card-ocr-fastmcp =1.0.0 Source cves: CVE-2025-9262 Source advisory: OSV:GHSA-P6RM-483J-37JF...
one (>=1.1.2 <=1.7.8) potentially affected by unknown CVE via highkick (=1.6.2)
highkick NPM version =1.6.2 is affected by a known vulnerability. The following packages have a transitive dependency on highkick and may be impacted: - one =1.1.2, =1.7.8 Source cves: unknown CVE Source advisory: OSV:MAL-2025-22428...
org.apache.camel.karaf:camel-as2 (>=4.7.0 <=4.8.9), org.apache.camel.karaf:camel-as2-test (>=4.7.0 <=4.8.9) +6 more potentially affected by CVE-2025-8916 via org.bouncycastle:bcprov-debug-jdk18on (>=1.71 <=1.78)
org.bouncycastle:bcprov-debug-jdk18on MAVEN version =1.71, =4.7.0, =4.7.0, =3.0.0-M1, =3.0.0-M1, =3.2.0, =3.18.0, =3.18.0, =3.18.0, =4.8.9 Source cves: CVE-2025-8916 Source advisory: SNYK:JAVA-ORGBOUNCYCASTLE-11789690...
ai.driftkit:driftkit-context-engineering-spring-ai-starter (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-context-engineering-spring-boot-starter (>=0.5.0 <=0.8.7) +7655 more potentially affected by CVE-2025-8885 via org.bouncycastle:bcprov-jdk18on (>=1.71 <=1.77)
org.bouncycastle:bcprov-jdk18on MAVEN version =1.71, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.8.3, =0.8.3, =0.8.3, =0.5.0, =0.5.0, =1.4.0, =1.2.0, =1.2.0-alpha07, =2023.12.01.210510-f61f157, =2023.12.01.210510-f61f157, =2025.05.12.160240-6152e21 and more Source cves: CVE-2025-8885 Source...
cn.acyou:leo-framework-barcode (=1.6.0.RELEASE), cn.acyou:leo-framework-commons (=1.6.0.RELEASE) +229 more potentially affected by CVE-2025-7787 via com.xuxueli:xxl-job-core (>=1.8.2 <=3.1.1)
com.xuxueli:xxl-job-core MAVEN version =1.8.2, =1.0.7, =1.0.6, =1.2.3, =1.0.0-RELEASE, =0.0.8-RELEASE, =0.0.8-RELEASE, =1.0.0, =1.6.0, =1.6.154 and more Source cves: CVE-2025-7787 Source advisory: OSV:GHSA-F8VW-8VGH-22R9...
ai.swim:swim-js (=3.10.0), ai.swim:swim-vm (=3.10.0) +3052 more potentially affected by CVE-2025-50106 via org.graalvm.sdk:graal-sdk (>=19.0.0 <=21.0.0.2)
org.graalvm.sdk:graal-sdk MAVEN version =19.0.0, =0.0.1, =0.1.5, =0.1.5, =0.0.2, =0.0.2, =1.5.1, =1.0.0, =1.0.2, =1.0.0, =1.0.2, =1.0.2, =1.1.4 and more Source cves: CVE-2025-50106 Source advisory: SNYK:JAVA-ORGGRAALVMSDK-11998131...
ai.idylnlp:idylnlp-nlp-language-detection-tika (>=1.0.0 <=1.1.0), ai.stainless:grails-tika (=0.1.0) +2893 more potentially affected by CVE-2025-48795 via org.apache.cxf:cxf-core (>=3.0.0-milestone1 <=3.5.10)
org.apache.cxf:cxf-core MAVEN version =3.0.0-milestone1, =1.0.0, =11.4-37, =3.6.1, =3.11.0, =3.0.0.RELEASE, =3.0.0.RELEASE, =3.0.0.RELEASE, =3.0.0.RELEASE, =3.0.0.RELEASE, =3.0.0.RELEASE, =3.1.0.RELEASE - cloud.testload:jmeter-clickhouse-listener =2.00 and more Source cves: CVE-2025-48795 Source...
com.erudika:para-jar (>=1.30.0 <=1.50.7), com.erudika:para-war (>=1.24.4 <=1.49.5) potentially affected by CVE-2025-49009 via com.erudika:para-server (>=1.24.4 <=1.50.7)
com.erudika:para-server MAVEN version =1.24.4, =1.30.0, =1.24.4, =1.49.5 Source cves: CVE-2025-49009 Source advisory: SNYK:JAVA-COMERUDIKA-10304840...
ai.ancf.lmos-router:lmos-router-hybrid-spring-boot-starter (=0.28.0), ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (=0.28.0) +11703 more potentially affected by CVE-2024-38820 +1 more via org.springframework:spring-context (>=6.1.0 <=6.1.2)
org.springframework:spring-context MAVEN version =6.1.0, =0.1.1, =0.1.1, =0.1.1, =0.1.1, =0.0.4, =0.1.0, =0.1.0, =0.12.1 - ai.djl.spring:djl-spring-boot-starter-autoconfigure =0.26 - ai.djl.spring:djl-spring-boot-starter-mxnet-auto =0.26 - ai.djl.spring:djl-spring-boot-starter-mxnet-linux-x8664...
ai.ancf.lmos:arc-graphql-spring-boot-starter (>=0.114.0 <=0.120.0), ai.ancf.lmos:arc-memory-mongo-spring-boot-starter (>=0.114.0 <=0.120.0) +7782 more potentially affected by CVE-2025-22235 via org.springframework.boot:spring-boot (>=3.4.0 <=3.4.4)
org.springframework.boot:spring-boot MAVEN version =3.4.0, =0.114.0, =0.114.0, =0.114.0, =0.114.0, =0.5.0, =0.8.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.24, =1.0.27, =1.0.0, =1.0.0, =1.0.28 and more Source cves: CVE-2025-22235 Source advisory: OSV:GHSA-RC42-6C7J-7H5R...
org.apereo.cas:cas-management-webapp (>=5.0.0 <=5.0.10) potentially affected by CVE-2025-3984 via org.apereo.cas:cas-management-webapp-support (>=5.0.0 <=5.0.9)
org.apereo.cas:cas-management-webapp-support MAVEN version =5.0.0, =5.0.0, =5.0.10 Source cves: CVE-2025-3984 Source advisory: SNYK:JAVA-ORGAPEREOCAS-9893219...
@amazeelabs/publisher (>=2.4.28 <=3.2.6), @appliedblockchain/silentdatarollup-custom-rpc (>=1.0.0 <=1.0.1) +26 more potentially affected by CVE-2025-32996 via http-proxy-middleware (>=3.0.0 <=3.0.3)
http-proxy-middleware NPM version =3.0.0, =2.4.28, =1.0.0, =2.1.0-next.0, =2.1.0-next.0, =9.0.0, =9.0.0, =9.0.0, =1.1.0, =19.0.0-alpha.0, =0.0.24, =0.0.1, =8.0.0, =0.391.0, =0.1.55, =3.9.5-beta.0, =3.50.0-beta.2 and more Source cves: CVE-2025-32996 Source advisory: OSV:GHSA-4WWW-5P9H-95MH...
1food-menu (>=0.0.1 <=0.2.3), 7qb-cli (=2.0.0) +2706 more potentially affected by CVE-2025-30208 via vite (>=0.14.4 <=4.5.1)
vite NPM version =0.14.4, =0.0.1, =1.0.0, =4.0.61, =4.0.61, =4.0.61, =4.0.61, =0.0.3, =1.0.1, =1.0.12, =0.0.4, =1.0.1, =1.0.7 and more Source cves: CVE-2025-30208 Source advisory: OSV:GHSA-X574-M823-4X7W...
adversarial-attacks-white-black-box (=0.1.7) potentially affected by CVE-2025-25301 via rembg (=2.0.57)
rembg PYPI version =2.0.57 is affected by a known vulnerability. The following packages have a transitive dependency on rembg and may be impacted: - adversarial-attacks-white-black-box =0.1.7 Source cves: CVE-2025-25301 Source advisory: OSV:GHSA-R5GX-C49X-H878...
@58860ed6ffd9e897/gold-finger-extension (=1.0.2), @99_water/theme (>=0.1.3 <=0.1.7) +1242 more potentially affected by CVE-2024-53384 via tsup (>=2.1.0 <=8.3.0)
tsup NPM version =2.1.0, =0.1.3, =1.0.0, =0.0.0, =1.0.3, =1.0.4, =2.0.0, =4.0.0 - @aiao/color =1.2.3 - @aiao/date =1.0.3 - @aiao/elements-vue =0.0.3 - @aiao/image-storage =0.1.5 - @aiao/nx-tsup =0.0.2 - @aiao/random =0.2.1 - @aiao/url =0.0.8 - @aiao/util =1.0.3 and more Source cves: CVE-2024-5338...
org.apache.james.examples:custom-james-assembly (>=3.7.0 <=3.7.5), org.apache.james:apache-james-mpt-antlib (>=3.0.0 <=3.0.1) +31 more potentially affected by CVE-2024-37358 via org.apache.james.protocols:protocols-imap (>=3.0.0-RC1 <=3.7.5)
org.apache.james.protocols:protocols-imap MAVEN version =3.0.0-RC1, =3.7.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.4.0, =3.0.0, =3.0.0, =3.7.0, =3.0.0, =3.0.0, =3.6.2 and more Source cves: CVE-2024-37358 Source advisory: OSV:GHSA-56JP-W6VW-J3JW...
io.github.project-openubl:quarkus-xsender (>=4.0.0.Beta1 <=5.1.1), io.github.project-openubl:quarkus-xsender-deployment (>=4.0.0.Beta1 <=5.1.1) +56 more potentially affected by CVE-2024-9621 via io.quarkiverse.cxf:quarkus-cxf (>=0.1 <=3.15.1)
io.quarkiverse.cxf:quarkus-cxf MAVEN version =0.1, =4.0.0.Beta1, =4.0.0.Beta1, =0.1, =1.5.0, =2.7.0, =3.10.0, =2.2.1, =1.5.0, =2.2.0, =3.10.0, =1.5.3, =1.5.5, =2.7.0, =1.5.0, =3.15.1 and more Source cves: CVE-2024-9621 Source advisory: OSV:GHSA-JQH2-...
ai.looktech:maestro-cli (>=2.6.0-looktech.1 <=2.6.0-looktech.2), ai.looktech:maestro-client (>=2.6.0-looktech.1 <=2.6.0-looktech.2) +182 more potentially affected by CVE-2024-7254 via com.google.protobuf:protobuf-kotlin (>=3.17.3 <=3.25.3)
com.google.protobuf:protobuf-kotlin MAVEN version =3.17.3, =2.6.0-looktech.1, =2.6.0-looktech.1, =2.6.0-looktech.1, =2.6.0-looktech.1, =1.0.0-beta1, =1.0.0-beta1, =7.0.0, =0.5.0, =0.0.1-alpha02, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =31.9.0, =32.1.0-alpha04 and more Source cves:...
@1-kb/emoji-picker (=0.0.1-alpha.11), @11ty/eleventy-plugin-vite (>=1.0.0 <=1.0.0-canary.3) +1528 more potentially affected by CVE-2024-45812 via vite (>=0.14.4 <=3.2.1)
vite NPM version =0.14.4, =1.0.0, =0.0.3, =1.0.1, =1.0.12, =0.0.4, =1.0.1, =0.0.1, =0.0.1, =0.0.12, =1.1.0, =1.0.0, =0.0.1, =0.0.11 - @agora-labs/paper-creator =0.0.5 and more Source cves: CVE-2024-45812 Source advisory: OSV:GHSA-64VR-G452-QVP3...
anchor-token (>=0.0.1 <=0.3.0-alpha.1), astro4nit (=0.0.1) +60 more potentially affected by unknown CVE via cw0 (>=0.10.3 <=0.9.1)
cw0 CARGO version =0.10.3, =0.0.1, =0.3.1, =2.5.2, =0.1.0, =0.3.0, =0.4.0, =0.4.0, =0.2.0, =0.2.0, =0.6.0, =0.6.0, =0.2.0, =0.2.1, =0.10.3 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0385...
arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +157 more potentially affected by CVE-2023-33976 via tensorflow-gpu (>=1.10.1 <=2.12.0)
tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - cctv-analysis =0.0.2 - chatbot-nlu =1.0.0 - classitransformers =0.0.1 and more Source cves: CVE-2023-33976 Source advisory: OSV:GHSA-GJH7-XX4R-X345...
com.netki:wallet-name-resolver (>=0.0.2 <=0.1.3), org.id4me:relying-party-api (>=1.0 <=2.19) potentially affected by CVE-2023-50387 via org.jitsi:dnssecjava (>=1.0 <=2.0.0)
org.jitsi:dnssecjava MAVEN version =1.0, =0.0.2, =1.0, =2.19 Source cves: CVE-2023-50387 Source advisory: OSV:GHSA-CRJG-W57M-RQQF...
org.jenkins-ci.plugins:bitbucket-approval-filter (=1.0.0), org.jenkins-ci.plugins:bitbucket-filter-project-trait (=1.0) +1 more potentially affected by CVE-2024-39460 via org.jenkins-ci.plugins:cloudbees-bitbucket-branch-source (>=2.2.0 <=2.4.1)
org.jenkins-ci.plugins:cloudbees-bitbucket-branch-source MAVEN version =2.2.0, =1.0.0, =1.0.2 Source cves: CVE-2024-39460 Source advisory: OSV:GHSA-X8MF-JCMF-R79F...
AitSar (=0.1.1), Hela (>=0.1.0 <=0.1.4) +3612 more potentially affected by unknown CVE via derivative (>=1.0.4 <=2.2.0)
derivative CARGO version =1.0.4, =0.1.0, =0.1.0, =4.3.0, =0.1.0, =0.2.3, =0.1.0, =0.13.0, =0.16.0, =0.1.0, =0.2.0-beta.3 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2024-0388...
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (=0.28.0), ai.ancf.lmos:arc-graphql-spring-boot-starter (>=0.1.1 <=0.112.0) +8250 more potentially affected by CVE-2024-22259 via org.springframework:spring-web (>=6.1.0 <=6.1.4)
org.springframework:spring-web MAVEN version =6.1.0, =0.1.1, =0.1.1, =0.0.4, =0.1.0, =0.1.0, =0.5.0, =0.6.0, =0.6.0, =0.5.0, =0.6.0, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.8.7 and more Source cves: CVE-2024-22259 Source advisory: OSV:GHSA-HGJH-9RJ2-G67J...
vantage6-algorithm-store (>=4.10.0 <=4.15.1rc1), vantage6-node (>=0.0.0 <=4.15.1rc1) +1 more potentially affected by CVE-2024-24770 via vantage6 (>=0.0.0 <=4.2.3)
vantage6 PYPI version =0.0.0, =4.10.0, =0.0.0, =0.0.0, =4.15.1rc1 Source cves: CVE-2024-24770 Source advisory: OSV:GHSA-5H3X-6GWF-73JM...
repository-service-tuf (>=0.0.1a7 <=0.11.0b1), sigstore (>=1.1.0 <=1.1.2rc1) +1 more potentially affected by unknown CVE via tuf (>=2.0.0 <=3.1.0)
tuf PYPI version =2.0.0, =0.0.1a7, =1.1.0, =0.4.3, =0.5.1 Source cves: unknown CVE Source advisory: OSV:GHSA-77HH-43CM-V8J6...
ctadirac (>=2.2.0a1 <=2.2.35) potentially affected by CVE-2024-24825 via dirac (>=8.0.0 <=8.0.30)
dirac PYPI version =8.0.0, =2.2.0a1, =2.2.35 Source cves: CVE-2024-24825 Source advisory: OSV:GHSA-59QJ-JCJV-662J...
evershop-app (=0.1.0) potentially affected by CVE-2023-46942 via @evershop/evershop (=1.0.0-rc.5)
@evershop/evershop NPM version =1.0.0-rc.5 is affected by a known vulnerability. The following packages have a transitive dependency on @evershop/evershop and may be impacted: - evershop-app =0.1.0 Source cves: CVE-2023-46942 Source advisory: OSV:GHSA-GGPM-9QFX-MHWG...
net.chronakis.tiles-dynamic:tiles-dynamic-example (=1.3), net.chronakis.tiles-dynamic:tiles-dynamic-lib (=1.3) +14 more potentially affected by CVE-2023-49735 via org.apache.struts:struts-tiles (=1.3.10)
org.apache.struts:struts-tiles MAVEN version =1.3.10 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.struts:struts-tiles and may be impacted: - net.chronakis.tiles-dynamic:tiles-dynamic-example =1.3 -...
HPGO (=0.9.2), algebraics (>=0.1.2 <=0.2.0) +243 more potentially affected by unknown CVE via inventory (>=0.1.10 <=0.1.11)
inventory CARGO version =0.1.10, =0.1.2, =0.11.0, =0.2.0, =0.1.0, =0.6.0, =0.7.0, =0.6.0, =0.5.0, =0.6.0, =0.4.0, =0.6.0, =0.5.0, =0.15.3 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0057...
doh-proxy (=0.4.0), libdoh (>=0.4.0 <=0.9.4) +1 more potentially affected by CVE-2023-3766 via odoh-rs (>=0.1.11 <=1.0.0)
odoh-rs CARGO version =0.1.11, =0.4.0, =0.1.0, =0.1.9 Source cves: CVE-2023-3766 Source advisory: OSV:GHSA-GPCV-P28P-FV2P...
@emberai/agent-node (>=1.1.0 <=1.2.0), @pnpm/beta (>=0.0.0 <=0.0.6-6.17.0) +1 more potentially affected by CVE-2023-37478 via @pnpm/win-x64 (>=0.0.0 <=7.33.3)
@pnpm/win-x64 NPM version =0.0.0, =1.1.0, =0.0.0, =6.17.1, =11.5.3 Source cves: CVE-2023-37478 Source advisory: OSV:GHSA-5R98-F33J-G8H7...
ai.timefold.solver:timefold-solver-spring-boot-autoconfigure (>=0.9.38 <=0.9.39), ai.timefold.solver:timefold-solver-spring-boot-starter (>=0.9.38 <=0.9.39) +3808 more potentially affected by CVE-2023-20883 via org.springframework.boot:spring-boot-autoconfigure (>=3.0.0 <=3.0.6)
org.springframework.boot:spring-boot-autoconfigure MAVEN version =3.0.0, =0.9.38, =0.9.38, =2.0.0, =3.0.0, =2.9.9, =0.25.3, =0.1.43, =0.1.65 - cc.vihackerframework:vihacker-annotation =1.0.8.R - cc.vihackerframework:vihacker-auth-starter =1.0.8.R - cc.vihackerframework:vihacker-common-starter...
@galenjs/framework-next (>=1.0.0 <=1.7.0), @galenjs/models (>=1.1.11 <=1.7.0) +4 more potentially affected by CVE-2023-22579 via @sequelize/core (=7.0.0-alpha.10)
@sequelize/core NPM version =7.0.0-alpha.10 is affected by a known vulnerability. The following packages have a transitive dependency on @sequelize/core and may be impacted: - @galenjs/framework-next =1.0.0, =1.1.11, =0.0.2, =0.0.2, =0.0.30, =0.1.0, =0.1.1 Source cves: CVE-2023-22579 Source...
@arcblock/gatsby-theme-docs (>=5.7.0 <=7.34.5), @changeinc/components (>=1.0.4 <=1.0.20) +87 more potentially affected by CVE-2021-23433 +1 more via algoliasearch-helper (>=2.13.0 <=2.2.0)
algoliasearch-helper NPM version =2.13.0, =5.7.0, =1.0.4, =1.0.4, =1.0.0, =2.2.1-custom, =0.0.7, =0.1.2, =0.1.4, =0.2.3, =0.2.1, =0.0.1, =2.0.0, =0.0.0, =1.9.0, =1.0.0, =1.4.2 and more Source cves: CVE-2021-23433, CVE-2025-3193 Source advisory: SNYK:JS-ALGOLIASEARCHHELPER-3318396...
cbs-sentry-dingding (=1.0.24), cbs-sentry-qyweixin (=1.0.1) +47 more potentially affected by CVE-2022-23485 via sentry (=20.8.0)
sentry PYPI version =20.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on sentry and may be impacted: - cbs-sentry-dingding =1.0.24 - cbs-sentry-qyweixin =1.0.1 - csnp =0.0.5, =1.0.0, =0.2.4, =1.0.0, =0.1.0, =0.4.0, =0.1.0, =0.2.0 and more Source cve...
animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +189 more potentially affected by CVE-2022-41891 via tensorflow-gpu (>=1.10.1 <=2.8.3)
tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-41891 Source advisory: OSV:GHSA-66VQ-54FQ-6JVV...
animl (>=1.1.2 <=1.1.4), arekit (>=0.21.0 <=0.22.1) +184 more potentially affected by CVE-2022-41885 via tensorflow-gpu (>=1.10.1 <=2.7.2)
tensorflow-gpu PYPI version =1.10.1, =1.1.2, =0.21.0, =0.23.0, =0.9.2, =1.0.0, =0.1.0, =0.0.1, =0.0.9, =0.1.0, =0.0.1, =1.0.0, =1.0.3 - brainhance =0.0.1 and more Source cves: CVE-2022-41885 Source advisory: OSV:GHSA-762H-VPVW-3RCX...
-wlq-mxgrapheditor (=0.0.0), @amccarthy/mxgraphng (=0.1.1) +81 more potentially affected by CVE-2022-40440 via mxgraph (>=3.9.12 <=4.2.2)
mxgraph NPM version =3.9.12, =0.0.2, =0.1.0, =1.0.0, =0.0.1, =0.0.1, =0.0.1-ba-beta.2, =0.0.1, =0.0.16, =0.0.1, =0.0.3 and more Source cves: CVE-2022-40440 Source advisory: OSV:GHSA-J4RV-PR9G-Q8JV...
aliby (>=0.1.18 <=0.1.55), aliby-baby (>=0.1.11 <=0.1.17) +29 more potentially affected by CVE-2022-35939 via tensorflow (>=2.9.0 <=2.9.0rc2)
tensorflow PYPI version =2.9.0, =0.1.18, =0.1.11, =0.30.0, =0.0.0, =1.3.0, =0.3.0, =1.0.1, =1.2.0, =0.0.6, =1.0.12, =0.1.0, =0.1.1 and more Source cves: CVE-2022-35939 Source advisory: OSV:GHSA-FFJM-4QWC-7CMF...
accepted (>=0.2.0 <=0.3.2), aigc_api (=5.1.2) +507 more potentially affected by unknown CVE via typemap (=0.3.3)
typemap CARGO version =0.3.3 is affected by a known vulnerability. The following packages have a transitive dependency on typemap and may be impacted: - accepted =0.2.0, =0.1.0, =0.2.0, =0.1.0, =0.1.0, =0.4.1 and more Source cves: unknown CVE Source advisory: OSV:GHSA-VFV3-9W6V-23JP...
@abacus-network/helloworld (>=0.2.1-alpha <=0.2.1-beta2), @alt-research/orbit-sdk-avail (>=0.9.1 <=0.9.11) +106 more potentially affected by CVE-2022-31198 via @openzeppelin/contracts-upgradeable (>=4.3.0 <=4.7.0)
@openzeppelin/contracts-upgradeable NPM version =4.3.0, =0.2.1-alpha, =0.9.1, =0.19.0-beta.0, =0.1.0-alpha, =0.24.2, =1.0.0, =0.6.0, =1.1.4-migration-beta.0, =1.0.0-beta.0, =1.0.0-upstream-0.19.0, =1.4.0, =1.5.0-beta.0 and more Source cves: CVE-2022-31198 Source advisory: OSV:GHSA-XRC4-737V-9Q75...
apollo-gateway-rs (>=0.7.5 <=0.7.6), aqlgen (>=0.1.0 <=0.8.0) +61 more potentially affected by unknown CVE via async-graphql (>=1.13.4 <=4.0.16)
async-graphql CARGO version =1.13.4, =0.7.5, =0.1.0, =0.1.0, =0.1.0, =0.0.1-alpha+3, =0.1.0, =2.9.13, =0.1.0-beta.0, =2.9.12, =0.2.0, =1.14.10, =0.1.0, =1.0.0, =4.0.16 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2022-0037...
causalegm (>=0.2.1 <=0.2.5), chrombpnet (>=0.1.0 <=0.1.2) +3 more potentially affected by CVE-2022-29197 via tensorflow-gpu (=2.8.0)
tensorflow-gpu PYPI version =2.8.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-gpu and may be impacted: - causalegm =0.2.1, =0.1.0, =0.0.6, =2.3.5, =2.4.1 - tlaunch =0.0.2 Source cves: CVE-2022-29197 Source advisory: OSV:GHSA-HRG5-737C-2...
elita (>=0.60.0 <=0.64.1) potentially affected by CVE-2020-25592 via salt (=2014.1.10)
salt PYPI version =2014.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on salt and may be impacted: - elita =0.60.0, =0.64.1 Source cves: CVE-2020-25592 Source advisory: OSV:GHSA-29J3-2446-5J4W...
am.ik.home:uaa-server (>=1.0.0 <=1.2.0), be.ordina:microservices-dashboard-server (=1.0.1) +511 more potentially affected by CVE-2013-1624 via org.bouncycastle:bcprov-jdk15on (>=1.46 <=1.47)
org.bouncycastle:bcprov-jdk15on MAVEN version =1.46, =1.0.0, =1.1.7, =1.1.9, =1.0.0, =2.0.7, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.6 and more Source cves: CVE-2013-1624 Source advisory: OSV:GHSA-8353-FGCR-XFHX...
org.cloudfoundry.identity:cloudfoundry-identity-api (>=3.0.0 <=3.20.0), org.cloudfoundry.identity:cloudfoundry-identity-app (>=3.0.0 <=3.20.0) +1 more potentially affected by CVE-2016-5016 via org.cloudfoundry.identity:cloudfoundry-identity-server (>=3.0.0 <=3.3.0.2)
org.cloudfoundry.identity:cloudfoundry-identity-server MAVEN version =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.20.0 Source cves: CVE-2016-5016 Source advisory: OSV:GHSA-RC2R-W8JV-VGGP...
org.apache.cxf.fediz.systests.federation:fediz-systests-federation-samlIdpWebapp (>=1.2.0 <=1.2.4), org.apache.cxf.fediz:fediz-idp (>=1.2.0 <=1.2.4) +2 more potentially affected by CVE-2015-5253 via org.apache.cxf:cxf-rt-rs-security-sso-saml (>=3.0.0 <=3.0.6)
org.apache.cxf:cxf-rt-rs-security-sso-saml MAVEN version =3.0.0, =1.2.0, =1.2.0, =3.0.5, =3.0.0, =3.0.16 Source cves: CVE-2015-5253 Source advisory: OSV:GHSA-3336-H95J-HVVF...
com.google.code.struts2webflow:struts2webflow-parent (=1.0.4), com.google.code.struts2webflow:struts2webflow-plugin (=1.0.4) +23 more potentially affected by CVE-2007-4556 via opensymphony:xwork (>=2.0.0 <=2.0.3)
opensymphony:xwork MAVEN version =2.0.0, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.5, =2.0.8 and more Source cves: CVE-2007-4556 Source advisory: OSV:GHSA-H7MF-QRM9-2848...