26517 matches found
-tompan-reacttemplate (>=1.0.1 <=1.1.0), 0726react (=0.1.1) +30759 more potentially affected by CVE-2026-55602 via http-proxy-middleware (>=0.16.0 <=2.0.1)
http-proxy-middleware NPM version =0.16.0, =1.0.1, =1.1.0 - 0726react =0.1.1 - 0x0.icu.anima =0.1.0 - 0xgank-tea-advice-pull =1.0.0 - 0xgank-tea-balance-pencil =1.0.0 - 0xgank-tea-brick-bell =1.0.0 - 0xgank-tea-cake-victory =1.0.0 - 0xgank-tea-central-compound =1.0.0 - 0xgank-tea-characteristic...
1dr-cli (>=0.2.10 <=0.5.14), @5minds/processcube_engine (>=19.0.0 <=20.0.0-renovate-fd1892-me5sbqz0) +286 more potentially affected by CVE-2026-55388 via piscina (>=5.0.0-alpha.0 <=5.1.4)
piscina NPM version =5.0.0-alpha.0, =0.2.10, =19.0.0, =4.0.0-alpha.0, =20.0.0, =20.0.0, =2.0.0-beta.1, =0.0.32, =1.5.0, =0.1.0-beta.54, =0.1.0, =0.0.0-pr-52-c316b3a-20260512173109, =0.0.5, =1.0.0, =21.2.2-depup.0, =3.15.0-depup.0, =3.15.0-depup.4 and more Source cves: CVE-2026-55388 Source...
@3clicksrh/design-system (>=1.0.0 <=1.0.2), @aurehxa/componentstest (>=1.0.0 <=1.0.1) +179 more potentially affected by CVE-2026-55886 via jodit (>=3.10.2 <=4.12.21)
jodit NPM version =3.10.2, =1.0.0, =1.0.0, =1.0.2, =0.1.133, =0.1.0, =0.1.0, =1.0.2, =1.0.0, =0.21.0, =0.17.0, =0.0.16, =0.0.6, =0.1.0, =0.1.0, =1.0.1, =1.0.6 and more Source cves: CVE-2026-55886 Source advisory: OSV:GHSA-VPMM-X3FM-QR5C...
@3clicksrh/design-system (>=1.0.0 <=1.0.2), @aurehxa/componentstest (>=1.0.0 <=1.0.1) +77 more potentially affected by CVE-2026-55886 via jodit (>=4.0.18 <=4.12.21)
jodit NPM version =4.0.18, =1.0.0, =1.0.0, =0.1.133, =0.1.0, =0.23.4-beta.1, =0.17.0, =1.0.1, =1.0.0, =1.1.3, =2.0.45, =1.0.10, =1.0.34, =1.0.1, =1.0.8, =1.0.16 and more Source cves: CVE-2026-55886 Source advisory: SNYK:JS-JODIT-17375134...
@0xwork/connect (>=0.1.0 <=0.1.7), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +22 more potentially affected by CVE-2026-53863 via openclaw (>=2026.3.22 <=2026.4.24)
openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 - @xmoxmo/bncr =0.0.8 and more Source cves: CVE-2026-53863 Source advisory: SNYK:JS-OPENCLAW-17394002...
@0xwork/connect (>=0.1.0 <=0.1.7), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +23 more potentially affected by CVE-2026-53842 via openclaw (>=2026.3.22 <=2026.4.9)
openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-53842 Source advisory: SNYK:JS-OPENCLAW-17394006...
@0xwork/connect (>=0.1.0 <=0.1.7), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +24 more potentially affected by CVE-2026-53842 via openclaw (>=0.0.1 <=2026.4.9)
openclaw NPM version =0.0.1, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-53842 Source advisory: OSV:GHSA-FQ9J-VW4W-FR6V...
@0xwork/connect (>=0.1.0 <=0.1.8), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +24 more potentially affected by CVE-2026-53843 via openclaw (>=0.0.1 <=2026.5.24-beta.2)
openclaw NPM version =0.0.1, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-53843 Source advisory: OSV:GHSA-Q99W-VH6V-Q3V7...
@0xwork/connect (>=0.1.0 <=0.1.8), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +23 more potentially affected by CVE-2026-53843 via openclaw (>=2026.3.22 <=2026.5.24-beta.2)
openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-53843 Source advisory: SNYK:JS-OPENCLAW-17394003...
@0xwork/connect (>=0.1.0 <=0.1.8), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +23 more potentially affected by CVE-2026-53864 via openclaw (>=2026.3.22 <=2026.5.24-beta.2)
openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-53864 Source advisory: SNYK:JS-OPENCLAW-17394027...
@0xwork/connect (>=0.1.0 <=0.1.7), @agentholdings/agent-passport (>=0.1.0 <=0.1.5) +23 more potentially affected by CVE-2026-53866 via openclaw (>=2026.3.22 <=2026.4.9)
openclaw NPM version =2026.3.22, =0.1.0, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =0.0.0, =27.2.5, =1.1.0, =2.1.3, =2026.3.24-3, =0.14.39, =0.1.0, =0.1.1, =0.2.18 and more Source cves: CVE-2026-53866 Source advisory: SNYK:JS-OPENCLAW-17394007...
click-clack (>=0.1.0 <=0.2.1), dr-widget (>=0.1.2 <=0.1.3) +7 more potentially affected by CVE-2026-54386 via marimo (>=0.10.19 <=0.21.1)
marimo PYPI version =0.10.19, =0.1.0, =0.1.2, =1.2.7, =2025.8.0, =0.1.1.dev1736307293, =0.1.1.dev1742453945 Source cves: CVE-2026-54386 Source advisory: OSV:GHSA-8M59-7XV8-735H...
click-clack (>=0.1.0 <=0.2.1), dr-widget (>=0.1.2 <=0.1.3) +7 more potentially affected by CVE-2026-54386 via marimo (>=0.10.19 <=0.21.1)
marimo PYPI version =0.10.19, =0.1.0, =0.1.2, =1.2.7, =2025.8.0, =0.1.1.dev1736307293, =0.1.1.dev1742453945 Source cves: CVE-2026-54386 Source advisory: SNYK:PYTHON-MARIMO-17661149...
async-media-agents (>=0.1.0 <=0.1.2), cmdbsyncer (>=3.12.7 <=4.1.4) +10 more potentially affected by CVE-2026-48990 via joserfc (>=1.0.0 <=1.6.5)
joserfc PYPI version =1.0.0, =0.1.0, =3.12.7, =1.0.0, =1.0.5, =2.1.1, =3.0.2, =4.5.0, =1.2.79, =0.21.2, =0.6.0, =0.9.0, =0.1.0, =0.5.0rc2 Source cves: CVE-2026-48990 Source advisory: SNYK:PYTHON-JOSERFC-17373071...
jest-test-plugin-utils (>=1.0.0 <=1.0.4) potentially affected by unknown CVE via vite-common-utils (=1.0.5)
vite-common-utils NPM version =1.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on vite-common-utils and may be impacted: - jest-test-plugin-utils =1.0.0, =1.0.4 Source cves: unknown CVE Source advisory: OSV:MAL-2026-6088...
chatlytics-hermes (>=3.0.0 <=3.0.1), mtmai (>=0.10.0 <=0.10.5) potentially affected by CVE-2026-53869 via hermes-agent (>=0.13.0 <=0.14.0)
hermes-agent PYPI version =0.13.0, =3.0.0, =0.10.0, =0.10.5 Source cves: CVE-2026-53869 Source advisory: OSV:GHSA-4PQM-J46F-795X...
chatlytics-hermes (>=3.0.0 <=3.0.1), mtmai (>=0.10.0 <=0.10.5) potentially affected by CVE-2026-53870 via hermes-agent (>=0.13.0 <=0.14.0)
hermes-agent PYPI version =0.13.0, =3.0.0, =0.10.0, =0.10.5 Source cves: CVE-2026-53870 Source advisory: OSV:GHSA-99F9-J8R3-P853...
au.csiro.pathling:encoders (>=6.2.2 <=9.5.0), au.csiro.pathling:fhir-server (>=6.2.2 <=7.2.0) +244 more potentially affected by CVE-2026-55471 via ca.uhn.hapi.fhir:org.hl7.fhir.utilities (>=6.0.0 <=6.9.1)
ca.uhn.hapi.fhir:org.hl7.fhir.utilities MAVEN version =6.0.0, =6.2.2, =6.2.2, =6.2.2, =6.2.2, =6.2.2, =6.2.2, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =8.8.1 and more Source cves: CVE-2026-55471 Source advisory: SNYK:JAVA-CAUHNHAPIFHIR-17372948...
au.csiro.pathling:encoders (>=5.1.0 <=9.5.0), au.csiro.pathling:fhir-server (>=5.3.1 <=7.2.0) +352 more potentially affected by CVE-2026-55471 via ca.uhn.hapi.fhir:org.hl7.fhir.utilities (>=0.0.1 <=6.9.1)
ca.uhn.hapi.fhir:org.hl7.fhir.utilities MAVEN version =0.0.1, =5.1.0, =5.3.1, =6.2.1, =5.3.1, =5.3.1, =5.3.0, =0.0.9, =5.6.5, =5.6.5, =5.6.5, =3.4.0, =5.6.5, =4.1.0, =4.0.3, =8.8.1 and more Source cves: CVE-2026-55471 Source advisory: OSV:GHSA-2F55-G35J-5JMF...
ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=4.0.0 <=8.8.1), ca.uhn.hapi.fhir:hapi-fhir-cli-app (>=5.6.5 <=7.4.5) +222 more potentially affected by CVE-2026-55470 via ca.uhn.hapi.fhir:org.hl7.fhir.validation (>=1.0.0 <=6.9.1)
ca.uhn.hapi.fhir:org.hl7.fhir.validation MAVEN version =1.0.0, =4.0.0, =5.6.5, =4.1.0, =4.1.0, =4.0.0, =5.0.0, =4.0.0, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =5.3.0, =4.0.0, =4.0.0, =8.8.1 and more Source cves: CVE-2026-55470 Source advisory: OSV:GHSA-FXJ4-P9XP-37V5...
ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=4.0.0 <=8.8.1), ca.uhn.hapi.fhir:hapi-fhir-cli-app (>=5.6.5 <=7.4.5) +234 more potentially affected by CVE-2026-55470 via ca.uhn.hapi.fhir:org.hl7.fhir.convertors (>=0.0.1 <=6.9.1)
ca.uhn.hapi.fhir:org.hl7.fhir.convertors MAVEN version =0.0.1, =4.0.0, =5.6.5, =4.1.0, =4.0.0, =4.1.0, =4.0.0, =5.0.0, =4.0.0, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =5.3.0, =4.0.0, =5.5.7 and more Source cves: CVE-2026-55470 Source advisory: OSV:GHSA-FXJ4-P9XP-37V5...
ca.uhn.hapi.fhir:hapi-fhir-base-test-jaxrsserver-kotlin (=6.8.0), ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=6.6.0 <=8.8.1) +184 more potentially affected by CVE-2026-55470 via ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 (>=6.0.0 <=6.9.1)
ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 MAVEN version =6.0.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.8.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =8.8.1 and more Source cves: CVE-2026-55470 Source advisory: SNYK:JAVA-CAUHNHAPIFHIR-17375098...
ca.uhn.hapi.fhir:hapi-fhir-base-test-jaxrsserver-kotlin (>=5.6.5 <=6.8.0), ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=4.0.0 <=8.8.1) +258 more potentially affected by CVE-2026-55470 via ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 (>=0.0.1 <=6.9.1)
ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 MAVEN version =0.0.1, =5.6.5, =4.0.0, =5.6.5, =4.1.0, =4.0.3, =4.1.0, =4.0.0, =4.0.0, =5.0.0, =4.0.0, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =8.8.1 and more Source cves: CVE-2026-55470 Source advisory: OSV:GHSA-FXJ4-P9XP-37V5...
dzbanek-langflow-base (>=0.6.0 <=0.6.1), langflow-base (>=0.7.0 <=0.8.0rc2) +1 more potentially affected by CVE-2026-55450 via lfx (>=0.1.13 <=0.3.4)
lfx PYPI version =0.1.13, =0.6.0, =0.7.0, =0.8.0rc2 - langflow-nightly =1.8.0.dev24 Source cves: CVE-2026-55450 Source advisory: SNYK:PYTHON-LFX-17400159...
langflow-nightly (=1.8.0.dev24) potentially affected by CVE-2026-55450 via langflow-base (=0.7.2)
langflow-base PYPI version =0.7.2 is affected by a known vulnerability. The following packages have a transitive dependency on langflow-base and may be impacted: - langflow-nightly =1.8.0.dev24 Source cves: CVE-2026-55450 Source advisory: SNYK:PYTHON-LANGFLOWBASE-17400158...
ai.konduit.serving:konduit-serving-clients (>=0.0.2 <=0.3.0), ai.konduit.serving:konduit-serving-distro-bom (>=0.0.2 <=0.3.0) +1653 more potentially affected by CVE-2026-55760 via com.github.jknack:handlebars (>=4.0.0 <=4.5.1)
com.github.jknack:handlebars MAVEN version =4.0.0, =0.0.2, =0.0.2, =0.1.1, =1.1.0, =0.1.0, =0.0.1, =4.1, =3.1, =7.1, =1.9.0, =1.8.0, =1.8.0, =1.10.0-M13 and more Source cves: CVE-2026-55760 Source advisory: SNYK:JAVA-COMGITHUBJKNACK-17372911...
ai.konduit.serving:konduit-serving-clients (>=0.0.2 <=0.3.0), ai.konduit.serving:konduit-serving-distro-bom (>=0.0.2 <=0.3.0) +1736 more potentially affected by CVE-2026-55760 via com.github.jknack:handlebars (>=0.4.0 <=4.5.1)
com.github.jknack:handlebars MAVEN version =0.4.0, =0.0.2, =0.0.2, =0.1.1, =1.1.0, =0.1.0, =0.0.1, =4.1, =3.1, =7.1, =1.9.0, =1.8.0, =1.10.0-M13 and more Source cves: CVE-2026-55760 Source advisory: OSV:GHSA-R4GV-QR8J-P3PG...
cn.datask:dat-storer-pgvector (>=0.6.1 <=0.7.1), cn.hexinfo:dat-storer-pgvector (>=0.7.1 <=0.7.2) +6 more potentially affected by CVE-2026-55405 via dev.langchain4j:langchain4j-pgvector (>=1.3.0-beta9 <=1.5.0-beta11)
dev.langchain4j:langchain4j-pgvector MAVEN version =1.3.0-beta9, =0.6.1, =0.7.1, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.2.0, =1.1.0, =1.1.7 Source cves: CVE-2026-55405 Source advisory: OSV:GHSA-2MFG-CC43-9PCJ...
com.cheroliv.slider:com.cheroliv.slider.gradle.plugin (>=0.0.1 <=0.0.6), com.cheroliv:slider (>=0.0.1 <=0.0.6) +15 more potentially affected by CVE-2026-55405 via dev.langchain4j:langchain4j-pgvector (>=0.31.0 <=1.1.0-beta7)
dev.langchain4j:langchain4j-pgvector MAVEN version =0.31.0, =0.0.1, =0.0.1, =8.8.0-alpha4, =1.0, =1.0, =1.0, =1.0, =0.0.1, =0.15.1, =1.1.0, =1.1.0, =0.15.1, =0.15.1, =0.0.5, =1.0.0, =1.0.1 and more Source cves: CVE-2026-55405 Source advisory: OSV:GHSA-2MFG-CC43-9PCJhttps://vulners.com/osv/OSV...
a2grunnerp (>=0.1.0 <=0.1.8), alfeios (>=1.2.0 <=1.4.0) +209 more potentially affected by CVE-2025-26240 via pdfkit (>=0.6.0 <=1.0.0)
pdfkit PYPI version =0.6.0, =0.1.0, =1.2.0, =0.1.35, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.5.3, =0.5.5, =0.1.17, =0.1.0, =0.1.0, =0.1.1 and more Source cves: CVE-2025-26240 Source advisory: SNYK:PYTHON-PDFKIT-17391903...
adjutant-ui (>=0.5.0 <=12.0.0.0rc1), blazar-dashboard (>=1.2.0 <=15.0.0.0rc1) +32 more potentially affected by CVE-2026-55748 via horizon (>=15.3.2 <=25.7.3)
horizon PYPI version =15.3.2, =0.5.0, =1.2.0, =10.0.0, =6.0.0, =7.0.0, =7.0.0, =1.4.1, =3.3.1, =1.4.0, =5.1.0, =2.16.1, =0.3.0, =10.0.0, =1.13.0, =9.0.0.0rc1 and more Source cves: CVE-2026-55748 Source advisory: OSV:GHSA-6WRM-X65G-HR4P...
a2grunnerp (>=0.1.0 <=0.1.8), alfeios (>=1.2.0 <=1.4.0) +209 more potentially affected by CVE-2025-26240 via pdfkit (>=0.6.0 <=1.0.0)
pdfkit PYPI version =0.6.0, =0.1.0, =1.2.0, =0.1.35, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.5.3, =0.5.5, =0.1.17, =0.1.0, =0.1.0, =0.1.1 and more Source cves: CVE-2025-26240 Source advisory: OSV:GHSA-9G3X-6X24-VF9F...
be.fluid-it.guice.extensions:guice-multi-shiro-realms (=0.1-1), be.fluid-it.shiro.jee:shiro-jee-authc (>=0.1-1 <=0.1-3) +3115 more potentially affected by CVE-2026-49268 via org.apache.shiro:shiro-core (>=1.0.0-incubating <=2.2.0)
org.apache.shiro:shiro-core MAVEN version =1.0.0-incubating, =0.1-1, =4.0.0-RC2, =1.0.0, =0.0.1, =1.0.0, =0.0.2, =0.0.21, =0.0.27, =0.0.2, =0.0.27, =0.0.1, =1.0.2, =1.0.6 and more Source cves: CVE-2026-49268 Source advisory: OSV:GHSA-X96M-RH44-VGV8...
com.github.fangjinuo.agileway:agileway-shiro-redis (>=2.3.3 <=3.1.12), com.github.fangjinuo.agileway:agileway-shiro-redis-springdata2 (>=2.4.2 <=3.1.12) +35 more potentially affected by CVE-2026-49268 via org.apache.shiro:shiro-core (=3.0.0-alpha-1)
org.apache.shiro:shiro-core MAVEN version =3.0.0-alpha-1 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.shiro:shiro-core and may be impacted: - com.github.fangjinuo.agileway:agileway-shiro-redis =2.3.3, =2.4.2, =0.0.3, =0.0.3, =0.0.3, =0.0....
ca.ibodrov.concord:mcp-for-concord (>=0.0.1 <=0.0.2), ca.ibodrov.concord:testcontainers-concord-core (>=2.0.3 <=2.0.5) +299 more potentially affected by CVE-2026-49268 via org.apache.shiro:shiro-core (>=2.0.0-alpha-1 <=2.2.0)
org.apache.shiro:shiro-core MAVEN version =2.0.0-alpha-1, =0.0.1, =2.0.3, =0.0.27, =0.0.27, =0.0.27, =6.0.0, =8.0.0, =8.0.0, =2.2.0, =1.0.2, =3.4.0, =3.3.0, =3.3.0, =3.3.0, =3.8.0 and more Source cves: CVE-2026-49268 Source advisory: SNYK:JAVA-ORGAPACHESHIRO-17378764...
airflow-toolkit (=0.13.3), airflow-tools (>=0.5.0 <=0.12.0) potentially affected by CVE-2026-50203 via apache-airflow-providers-sftp (=4.11.1)
apache-airflow-providers-sftp PYPI version =4.11.1 is affected by a known vulnerability. The following packages have a transitive dependency on apache-airflow-providers-sftp and may be impacted: - airflow-toolkit =0.13.3 - airflow-tools =0.5.0, =0.12.0 Source cves: CVE-2026-50203 Source advisory:...
com.webank.wedatasphere.dss:dolphinscheduler-prod-metrics (>=1.1.0 <=1.2.2), org.apache.dolphinscheduler:dolphinscheduler-dist (>=2.0.0 <=3.4.1) +2 more potentially affected by CVE-2026-47340 via org.apache.dolphinscheduler:dolphinscheduler-api (>=1.3.9 <=3.4.1)
org.apache.dolphinscheduler:dolphinscheduler-api MAVEN version =1.3.9, =1.1.0, =2.0.0, =2.0.2, =1.3.9, =3.0.6 Source cves: CVE-2026-47340 Source advisory: OSV:GHSA-694G-J8PJ-CJJ5...
com.webank.wedatasphere.dss:dolphinscheduler-prod-metrics (>=1.1.0 <=1.2.2), org.apache.dolphinscheduler:dolphinscheduler-dist (>=2.0.0 <=3.4.1) +2 more potentially affected by CVE-2026-42357 via org.apache.dolphinscheduler:dolphinscheduler-api (>=1.3.9 <=3.4.1)
org.apache.dolphinscheduler:dolphinscheduler-api MAVEN version =1.3.9, =1.1.0, =2.0.0, =2.0.2, =1.3.9, =3.0.6 Source cves: CVE-2026-42357 Source advisory: OSV:GHSA-WV7F-C794-82V6...
com.webank.wedatasphere.dss:dolphinscheduler-prod-metrics (>=1.1.0 <=1.2.2), org.apache.dolphinscheduler:dolphinscheduler-dist (>=2.0.0 <=3.4.1) +2 more potentially affected by CVE-2026-41280 via org.apache.dolphinscheduler:dolphinscheduler-api (>=1.3.9 <=3.4.1)
org.apache.dolphinscheduler:dolphinscheduler-api MAVEN version =1.3.9, =1.1.0, =2.0.0, =2.0.2, =1.3.9, =3.0.6 Source cves: CVE-2026-41280 Source advisory: OSV:GHSA-WH3W-V6GJ-FQH2...
com.webank.wedatasphere.dss:dolphinscheduler-prod-metrics (>=1.1.0 <=1.2.2), org.apache.dolphinscheduler:dolphinscheduler-dist (>=2.0.0 <=3.4.1) +2 more potentially affected by CVE-2026-32966 via org.apache.dolphinscheduler:dolphinscheduler-api (>=1.3.9 <=3.4.1)
org.apache.dolphinscheduler:dolphinscheduler-api MAVEN version =1.3.9, =1.1.0, =2.0.0, =2.0.2, =1.3.9, =3.0.6 Source cves: CVE-2026-32966 Source advisory: OSV:GHSA-R989-CJHX-3V49...
com.webank.wedatasphere.dss:dolphinscheduler-prod-metrics (>=1.1.0 <=1.2.2), org.apache.dolphinscheduler:dolphinscheduler-dist (>=2.0.0 <=3.4.1) +2 more potentially affected by CVE-2026-32967 via org.apache.dolphinscheduler:dolphinscheduler-api (>=1.3.9 <=3.4.1)
org.apache.dolphinscheduler:dolphinscheduler-api MAVEN version =1.3.9, =1.1.0, =2.0.0, =2.0.2, =1.3.9, =3.0.6 Source cves: CVE-2026-32967 Source advisory: OSV:GHSA-85G9-8J9G-P486...
@0xwork/connect (>=0.1.0 <=0.1.9), @1001-digital/components.evm (>=1.3.0 <=3.6.11) +1373 more potentially affected by CVE-2026-11525 via undici (>=8.0.0 <=8.4.1)
undici NPM version =8.0.0, =0.1.0, =1.3.0, =0.1.0, =1.2.2, =0.3.0, =0.3.0, =0.3.1, =5.0.1-staging.3edc9d7b8d6f, =5.0.1-staging.3edc9d7b8d6f, =5.1.1-staging.0ad6ac75ae4a, =5.1.1-staging.0ad6ac75ae4a, =5.0.1-staging.4b92bc7a3e3b, =5.0.1-staging.3abdf9534c25, =2026.6.2, =2026.6.5 and more Source cve...
002-globals (=1.0.0), 007putra-my-bot (=1.1.1) +36331 more potentially affected by CVE-2026-11525 via undici (>=7.0.0 <=7.27.2)
undici NPM version =7.0.0, =1.0.0, =0.0.1, =1.0.0, =1.0.0, =1.0.2, =1.0.0, =1.0.0, =0.3.96, =0.0.1, =0.0.9 - 2017-1535 =1.0.0 and more Source cves: CVE-2026-11525 Source advisory: SNYK:JS-UNDICI-17372758...
0utmailauth (=1.0.0), 0xkobold (>=0.0.1 <=0.8.0) +15496 more potentially affected by CVE-2026-11525 via undici (>=6.0.0 <=6.26.0)
undici NPM version =6.0.0, =0.0.1, =1.0.1, =1.0.0, =1.0.0, =1.0.1, =1.0.68, =4.11.0, =4.11.46 - 7up-dev =1.0.0 - 7up-developer =1.0.0 - 7up-kingdom =1.0.0 - 7up-nub =1.0.0 and more Source cves: CVE-2026-11525 Source advisory: SNYK:JS-UNDICI-17372758...
0utmailauth (=1.0.0), 0xkobold (>=0.0.1 <=0.8.0) +4815 more potentially affected by CVE-2026-12151 via undici (>=6.0.0 <=6.25.0)
undici NPM version =6.0.0, =0.0.1, =1.0.1, =1.0.0, =0.5.2, =0.5.2, =0.4.2, =0.5.116, =0.5.119 and more Source cves: CVE-2026-12151 Source advisory: SNYK:JS-UNDICI-17372754...
@0xwork/connect (>=0.1.0 <=0.1.9), @1001-digital/components.evm (>=1.3.0 <=3.6.11) +1373 more potentially affected by CVE-2026-12151 via undici (>=8.0.0 <=8.4.1)
undici NPM version =8.0.0, =0.1.0, =1.3.0, =0.1.0, =1.2.2, =0.3.0, =0.3.0, =0.3.1, =5.0.1-staging.3edc9d7b8d6f, =5.0.1-staging.3edc9d7b8d6f, =5.1.1-staging.0ad6ac75ae4a, =5.1.1-staging.0ad6ac75ae4a, =5.0.1-staging.4b92bc7a3e3b, =5.0.1-staging.3abdf9534c25, =2026.6.2, =2026.6.5 and more Source cve...
002-globals (=1.0.0), 007putra-my-bot (=1.1.1) +36331 more potentially affected by CVE-2026-12151 via undici (>=7.0.0 <=7.27.2)
undici NPM version =7.0.0, =1.0.0, =0.0.1, =1.0.0, =1.0.0, =1.0.2, =1.0.0, =1.0.0, =0.3.96, =0.0.1, =0.0.9 - 2017-1535 =1.0.0 and more Source cves: CVE-2026-12151 Source advisory: SNYK:JS-UNDICI-17372754...
org.webjars.npm:actions__core (>=1.10.0 <=1.11.1), org.webjars.npm:actions__http-client (>=2.2.1 <=2.2.3) +14 more potentially affected by CVE-2026-12151 via org.webjars.npm:undici (>=4.12.2 <=5.29.0)
org.webjars.npm:undici MAVEN version =4.12.2, =1.10.0, =2.2.1, =0.1.16, =0.1.28 - org.webjars.npm:elasticelasticsearch =8.6.0 - org.webjars.npm:elastictransport =8.3.1 - org.webjars.npm:firebase =10.13.0 - org.webjars.npm:firebaseauth =1.7.7 - org.webjars.npm:firebaseauth-compat =0.5.12 -...
0utmailauth (=1.0.0), 0xkobold (>=0.0.1 <=0.8.0) +15496 more potentially affected by CVE-2026-6733 via undici (>=6.0.0 <=6.26.0)
undici NPM version =6.0.0, =0.0.1, =1.0.1, =1.0.0, =1.0.0, =1.0.1, =1.0.68, =4.11.0, =4.11.46 - 7up-dev =1.0.0 - 7up-developer =1.0.0 - 7up-kingdom =1.0.0 - 7up-nub =1.0.0 and more Source cves: CVE-2026-6733 Source advisory: SNYK:JS-UNDICI-17372752...
@0xwork/connect (>=0.1.0 <=0.1.9), @1001-digital/components.evm (>=1.3.0 <=3.6.11) +1373 more potentially affected by CVE-2026-6733 via undici (>=8.0.0 <=8.4.1)
undici NPM version =8.0.0, =0.1.0, =1.3.0, =0.1.0, =1.2.2, =0.3.0, =0.3.0, =0.3.1, =5.0.1-staging.3edc9d7b8d6f, =5.0.1-staging.3edc9d7b8d6f, =5.1.1-staging.0ad6ac75ae4a, =5.1.1-staging.0ad6ac75ae4a, =5.0.1-staging.4b92bc7a3e3b, =5.0.1-staging.3abdf9534c25, =2026.6.2, =2026.6.5 and more Source cve...