26517 matches found
@c0va23/react-router-dev (=7.8.3-alpha.2), @catmint/cli (>=0.0.0-prealpha.1 <=0.0.0-prealpha.26) +34 more potentially affected by CVE-2025-68155 via @vitejs/plugin-rsc (>=0.4.11 <=0.5.27)
@vitejs/plugin-rsc NPM version =0.4.11, =0.0.0-prealpha.1, =0.0.0-prealpha.1, =0.2.0, =0.0.1-alpha.0, =16.2.6, =0.0.9, =0.6.0, =0.5.0, =0.0.0-experimental.1, =0.1.0, =0.0.1, =0.0.0-1ae0b37, =0.0.0-experimental.00a81282, =0.0.0-experimental-2a6c7bc, =7.8.2-pre.1 and more Source cves: CVE-2025-6815...
@alstar/studio (=0.0.0-beta.20), @andersondacampo/volt-core (=0.3.0) +165 more potentially affected by unknown CVE via rou3 (>=0.1.0 <=0.6.3)
rou3 NPM version =0.1.0, =1.2.6-beta.6, =1.0.24, =0.0.1, =1.3.24, =0.8.2, =1.4.0, =1.3.27, =1.3.27, =1.3.27, =1.3.27, =1.3.27, =1.3.27, =1.3.37 and more Source cves: unknown CVE Source advisory: SNYK:JS-ROU3-14459107...
@agentcorporation/server (>=0.3.3 <=0.3.13), @airisos/server (>=2026.324.0-canary.0 <=2026.325.0-canary.3) +154 more potentially affected by unknown CVE via better-auth (>=0.4.10-beta.10 <=1.4.4)
better-auth NPM version =0.4.10-beta.10, =0.3.3, =2026.324.0-canary.0, =2026.501.0, =2026.501.0, =0.0.7, =0.0.1, =1.3.27, =1.3.27, =1.3.27, =1.3.27, =1.3.27, =1.3.27, =1.3.26, =1.3.27, =1.3.37 and more Source cves: unknown CVE Source advisory: OSV:GHSA-X732-6J76-QMHM...
0x20bf (=0.0.1), 31 (=2.3.0) +4284 more potentially affected by CVE-2025-68146 via filelock (>=2.0.13 <=3.20.0)
filelock PYPI version =2.0.13, =0.0.3, =0.1.0, =1.0.5, =0.0.1b1, =0.2.3, =0.2.7 - ac-solver =0.1.0 - acceldata-o2a =1.0.0 and more Source cves: CVE-2025-68146 Source advisory: OSV:GHSA-W853-JP5J-5J7F...
0x20bf (=0.0.1), 31 (=2.3.0) +4281 more potentially affected by CVE-2025-68146 via filelock (>=3.0.10 <=3.20.0)
filelock PYPI version =3.0.10, =0.0.3, =0.1.0, =1.0.5, =0.0.1b1, =0.2.3, =0.2.7 - ac-solver =0.1.0 - acceldata-o2a =1.0.0 and more Source cves: CVE-2025-68146 Source advisory: SNYK:PYTHON-FILELOCK-14458335...
@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2025-68115 via parse-server (>=2.0.8 <=7.5.4)
parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2025-68115 Source advisory: OSV:GHSA-JHGF-2H8H-GGXV...
@c0va23/react-router-dev (=7.8.3-alpha.2), @catmint/cli (>=0.0.0-prealpha.1 <=0.0.0-prealpha.26) +34 more potentially affected by CVE-2025-68155 via @vitejs/plugin-rsc (>=0.4.11 <=0.5.27)
@vitejs/plugin-rsc NPM version =0.4.11, =0.0.0-prealpha.1, =0.0.0-prealpha.1, =0.2.0, =0.0.1-alpha.0, =16.2.6, =0.0.9, =0.6.0, =0.5.0, =0.0.0-experimental.1, =0.1.0, =0.0.1, =0.0.0-1ae0b37, =0.0.0-experimental.00a81282, =0.0.0-experimental-2a6c7bc, =7.8.2-pre.1 and more Source cves: CVE-2025-6815...
megatron-bridge (>=0.1.0rc0 <=0.3.1), nemo-eval (>=0.1.0rc1 <=0.2.0rc0) +1 more potentially affected by CVE-2025-33225 via nvidia-resiliency-ext (>=0.3.0 <=0.4.1)
nvidia-resiliency-ext PYPI version =0.3.0, =0.1.0rc0, =0.1.0rc1, =0.1.0, =0.4.0 Source cves: CVE-2025-33225 Source advisory: SNYK:PYTHON-NVIDIARESILIENCYEXT-14459109...
nemo-eval (>=0.1.0rc1 <=0.1.0rc2), nemo-export-deploy (>=0.1.0 <=0.2.0rc1) potentially affected by CVE-2025-33235 via nvidia-resiliency-ext (=0.3.0)
nvidia-resiliency-ext PYPI version =0.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on nvidia-resiliency-ext and may be impacted: - nemo-eval =0.1.0rc1, =0.1.0, =0.2.0rc1 Source cves: CVE-2025-33235 Source advisory:...
sai-isaac (>=0.0.5 <=0.0.7) potentially affected by CVE-2025-33210 via isaaclab (=2.0.2)
isaaclab PYPI version =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on isaaclab and may be impacted: - sai-isaac =0.0.5, =0.0.7 Source cves: CVE-2025-33210 Source advisory: SNYK:PYTHON-ISAACLAB-14459400...
Cryptonic (>=0.1.0 <=0.1.2), IMAPServer (=0.1.0) +6348 more potentially affected by unknown CVE via bincode (>=0.0.1 <=3.0.0)
bincode CARGO version =0.0.1, =0.1.0, =0.19.0, =0.4.1, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.1.0, =0.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0141...
ch.iterial.keycloak.plugins:keycloak-directus-plugin (>=0.1.0 <=0.7.0), com.c4-soft.springaddons:keycloak-grants-mapper (>=3.1.13-jdk1.8 <=3.1.14-jdk17) +192 more potentially affected by CVE-2025-14777 via org.keycloak:keycloak-services (>=10.0.0 <=26.5.5)
org.keycloak:keycloak-services MAVEN version =10.0.0, =0.1.0, =3.1.13-jdk1.8, =11.0.1, =1.2.6, =1.2.5, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.4.11 - com.github.wnameless.spring.boot.up:spring-boot-up-embedded-keycloak =24.3.0.0 -...
altcha-solver (=1.0.2) potentially affected by CVE-2025-68113 via altcha-lib (=0.3.0)
altcha-lib NPM version =0.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on altcha-lib and may be impacted: - altcha-solver =1.0.2 Source cves: CVE-2025-68113 Source advisory: OSV:GHSA-6GVQ-JCMP-8959...
exordos-core (>=0.0.7 <=0.1.1), genesis-core (>=0.0.2 <=0.0.6) +3 more potentially affected by CVE-2025-68113 via altcha (=0.2.0)
altcha PYPI version =0.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on altcha and may be impacted: - exordos-core =0.0.7, =0.0.2, =5.11.0, =0.1.0, =0.12.0 - wlhosted =2024.11.0 Source cves: CVE-2025-68113 Source advisory: OSV:GHSA-6GVQ-JCMP-8959...
ai.catboost:catboost-spark_4.1_2.13 (=1.2.10), ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0) +4410 more potentially affected by CVE-2025-67735 via io.netty:netty-codec-http (>=4.2.0.Alpha1 <=4.2.7.Final)
io.netty:netty-codec-http MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =26.3.2 and more Source cves: CVE-2025-67735 Source advisory: OSV:GHSA-84H7-RJJ3-6JX4...
ai.catboost:catboost-spark_4.1_2.13 (=1.2.10), ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0) +4410 more potentially affected by CVE-2025-67735 via io.netty:netty-codec-http (>=4.2.0.Alpha1 <=4.2.7.Final)
io.netty:netty-codec-http MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =26.3.2 and more Source cves: CVE-2025-67735 Source advisory: SNYK:JAVA-IONETTY-14423947...
ai.ancf.lmos-router:benchmarks (>=0.2.0 <=0.28.0), ai.ancf.lmos-router:lmos-router-hybrid (>=0.2.0 <=0.28.0) +22715 more potentially affected by CVE-2025-67735 via io.netty:netty-codec-http (>=4.0.0.Alpha1 <=4.1.128.Final)
io.netty:netty-codec-http MAVEN version =4.0.0.Alpha1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.1.1, =0.1.1, =0.1.1, =0.0.4, =0.6.0 - ai.ancf.lmos:lmos-router-hybrid =0.1.0 - ai.ancf.lmos:lmos-router-hybrid-spring-boot-starter =0.1.0 - ai.ancf.lmos:lmos-router-llm =0.1.0 -...
ai.ancf.lmos-router:benchmarks (>=0.2.0 <=0.28.0), ai.ancf.lmos-router:lmos-router-hybrid (>=0.2.0 <=0.28.0) +22715 more potentially affected by CVE-2025-67735 via io.netty:netty-codec-http (>=4.0.0.Alpha1 <=4.1.128.Final)
io.netty:netty-codec-http MAVEN version =4.0.0.Alpha1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.1.1, =0.1.1, =0.1.1, =0.0.4, =0.6.0 - ai.ancf.lmos:lmos-router-hybrid =0.1.0 - ai.ancf.lmos:lmos-router-hybrid-spring-boot-starter =0.1.0 - ai.ancf.lmos:lmos-router-llm =0.1.0 -...
@luxos/share-panel (>=1.0.0 <=1.0.3), @types/cordova-plugin-x-socialsharing (>=5.4.5 <=5.4.8) +4 more potentially affected by CVE-2025-65835 via cordova-plugin-x-socialsharing (>=5.6.8 <=6.0.4)
cordova-plugin-x-socialsharing NPM version =5.6.8, =1.0.0, =5.4.5, =0.0.1, =1.0.0 - radoo-odc-app =0.0.1 Source cves: CVE-2025-65835 Source advisory: SNYK:JS-CORDOVAPLUGINXSOCIALSHARING-14426472...
aleksis (>=2022.6.0.post0 <=2023.6.1), aleksis-app-alsijil (>=2.0.0 <=3.0.1) +96 more potentially affected by CVE-2025-65430 via django-allauth (>=0.24.1 <=65.12.1)
django-allauth PYPI version =0.24.1, =2022.6.0.post0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =1.0.0.dev0, =0.1.0, =2.0.0, =2.0.0, =0.1.0, =2.0.0, =1.0.0, =0.1.1, =2.0.0.dev0, =2.0.0.dev2 and more Source cves: CVE-2025-65430 Source advisory: OSV:GHSA-QHMC-3MVR-F2J4...
aleksis (>=2022.6.0.post0 <=2023.6.1), aleksis-app-alsijil (>=2.0.0 <=3.0.1) +96 more potentially affected by CVE-2025-65431 via django-allauth (>=0.24.1 <=65.12.1)
django-allauth PYPI version =0.24.1, =2022.6.0.post0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =1.0.0.dev0, =0.1.0, =2.0.0, =2.0.0, =0.1.0, =2.0.0, =1.0.0, =0.1.1, =2.0.0.dev0, =2.0.0.dev2 and more Source cves: CVE-2025-65431 Source advisory: OSV:GHSA-8M3C-C723-H4P4...
django-daiquiri (>=1.3.0 <=1.3.1), django-jwt-allauth (>=1.0.3 <=1.2.0) +5 more potentially affected by CVE-2025-65431 via django-allauth (>=65.0.1 <=65.12.1)
django-allauth PYPI version =65.0.1, =1.3.0, =1.0.3, =0.3.8, =4.0.0, =2.0.0, =1.1.1, =1.1.2 Source cves: CVE-2025-65431 Source advisory: SNYK:PYTHON-DJANGOALLAUTH-14425069...
django-daiquiri (>=1.3.0 <=1.3.1), django-jwt-allauth (>=1.0.3 <=1.2.0) +5 more potentially affected by CVE-2025-65430 via django-allauth (>=65.0.1 <=65.12.1)
django-allauth PYPI version =65.0.1, =1.3.0, =1.0.3, =0.3.8, =4.0.0, =2.0.0, =1.1.1, =1.1.2 Source cves: CVE-2025-65430 Source advisory: SNYK:PYTHON-DJANGOALLAUTH-14425438...
aleksis (>=2022.6.0.post0 <=2023.6.1), aleksis-app-alsijil (>=2.0.0 <=3.0.1) +96 more potentially affected by CVE-2025-65430 via django-allauth (>=0.24.1 <=65.12.1)
django-allauth PYPI version =0.24.1, =2022.6.0.post0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =1.0.0.dev0, =0.1.0, =2.0.0, =2.0.0, =0.1.0, =2.0.0, =1.0.0, =0.1.1, =2.0.0.dev0, =2.0.0.dev2 and more Source cves: CVE-2025-65430 Source advisory: OSV:PYSEC-2025-110...
aleksis (>=2022.6.0.post0 <=2023.6.1), aleksis-app-alsijil (>=2.0.0 <=3.0.1) +96 more potentially affected by CVE-2025-65431 via django-allauth (>=0.24.1 <=65.12.1)
django-allauth PYPI version =0.24.1, =2022.6.0.post0, =2.0.0, =1.0.0, =2.0.0, =2.1.0, =2.0.0, =1.0.0.dev0, =0.1.0, =2.0.0, =2.0.0, =0.1.0, =2.0.0, =1.0.0, =0.1.1, =2.0.0.dev0, =2.0.0.dev2 and more Source cves: CVE-2025-65431 Source advisory: OSV:PYSEC-2025-111...
airflow-balancer (>=0.7.0 <=0.7.6), airflow-clickhouse-plugin (=1.5.0) +21 more potentially affected by CVE-2025-66388 via apache-airflow-task-sdk (>=1.0.0rc4 <=1.1.4)
apache-airflow-task-sdk PYPI version =1.0.0rc4, =0.7.0, =0.6.1, =1.10.7, =0.1.0, =1.4.3, =1.2.10, =0.1.1, =3.0.0rc3, =3.0.0rc3, =1.6.0, =1.5.3, =1.25.0rc1, =3.12.0, =0.0.4, =0.0.6.dev1 and more Source cves: CVE-2025-66388 Source advisory: SNYK:PYTHON-APACHEAIRFLOWTASKSDK-14459396...
net.sc8s:elastic-testkit_2.13 (>=0.102.0 <=0.110.0), org.elasticsearch.test:framework (>=9.0.0 <=9.1.10) +3 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch (>=9.0.0-beta1 <=9.1.7)
org.elasticsearch:elasticsearch MAVEN version =9.0.0-beta1, =0.102.0, =9.0.0, =9.0.0, =1.7.es904.0, =9.0.0, =9.1.5 Source cves: CVE-2025-37731 Source advisory: OSV:GHSA-M9GH-789G-Q5PV...
ai.ylyue:yue-library-data-es (>=j8.2.2.0 <=j11.2.6.2), br.com.simpli:simpli-ws (>=1.2.1 <=2.2.0) +1034 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch (>=7.0.0-alpha1 <=8.19.7)
org.elasticsearch:elasticsearch MAVEN version =7.0.0-alpha1, =j8.2.2.0, =1.2.1, =0.0.1-alpha, =5.3.0, =5.6.5, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =6.2.0, =6.8.0, =6.4.0, =5.3.0, =5.3.0, =5.3.0, =5.4.0 and more Source cves: CVE-2025-37731 Source advisory: OSV:GHSA-M9GH-789G-Q5PV...
org.elasticsearch.test:framework (>=9.2.0 <=9.2.1), org.elasticsearch.test:yaml-rest-runner (>=9.2.0 <=9.2.1) +1 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch (>=9.2.0 <=9.2.1)
org.elasticsearch:elasticsearch MAVEN version =9.2.0, =9.2.0, =9.2.0, =9.2.1 - pl.allegro.tech.elasticsearch.plugin:elasticsearch-analysis-morfologik =9.2.1 Source cves: CVE-2025-37731 Source advisory: OSV:GHSA-M9GH-789G-Q5PV...
apache-airflow-core (>=3.1.0 <=3.1.4), apache-airflow-providers-common-compat (>=1.6.0 <=1.7.3rc1) +6 more potentially affected by CVE-2025-66388 via apache-airflow (>=3.1.0 <=3.1.4)
apache-airflow PYPI version =3.1.0, =3.1.0, =1.6.0, =1.5.3, =1.26.0, =2.0.2, =0.4.0, =1.1.0, =1.1.4 Source cves: CVE-2025-66388 Source advisory: OSV:GHSA-FV47-PQH6-WXGQ...
apache-airflow-core (>=3.1.0 <=3.1.3), apache-airflow-providers-common-compat (>=1.6.0 <=1.7.3rc1) +6 more potentially affected by CVE-2025-66388 via apache-airflow (>=3.1.0 <=3.1.3)
apache-airflow PYPI version =3.1.0, =3.1.0, =1.6.0, =1.5.3, =1.26.0, =2.0.2, =0.4.0, =1.1.0, =1.1.3 Source cves: CVE-2025-66388 Source advisory: OSV:PYSEC-2025-86...
com.aconex.scrutineer:scrutineer (=7.9.3), org.elasticsearch.client:x-pack-transport (>=7.8.1 <=7.9.3) potentially affected by CVE-2025-37731 via org.elasticsearch.plugin:x-pack-core (>=7.8.1 <=7.9.3)
org.elasticsearch.plugin:x-pack-core MAVEN version =7.8.1, =7.8.1, =7.9.3 Source cves: CVE-2025-37731 Source advisory: SNYK:JAVA-ORGELASTICSEARCHPLUGIN-14417581...
net.sc8s:elastic-testkit_2.13 (>=0.102.0 <=0.110.0), org.elasticsearch.plugin:transport-netty4 (>=9.0.0 <=9.1.10) +4 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch-ssl-config (>=9.0.0-beta1 <=9.1.7)
org.elasticsearch:elasticsearch-ssl-config MAVEN version =9.0.0-beta1, =0.102.0, =9.0.0, =9.0.0, =9.1.4, =9.0.0, =9.0.0, =9.1.10 Source cves: CVE-2025-37731 Source advisory: SNYK:JAVA-ORGELASTICSEARCH-14417579...
com.aconex.scrutineer:scrutineer (=7.9.3), com.playtika.testcontainers:embedded-elasticsearch (>=2.0.0 <=2.0.11) +15 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch-ssl-config (>=7.8.1 <=8.19.7)
org.elasticsearch:elasticsearch-ssl-config MAVEN version =7.8.1, =2.0.0, =0.2.7.1, =0.83.0, =7.9.01, =7.8.1, =1.5.0, =7.8.1, =7.8.1, =7.8.1, =8.10.0, =7.8.1, =8.10.0, =8.0.0, =8.19.16 and more Source cves: CVE-2025-37731 Source advisory: SNYK:JAVA-ORGELASTICSEARCH-14417579...
org.elasticsearch.plugin:transport-netty4 (>=9.2.0 <=9.2.1), org.elasticsearch.plugin:x-pack-core (>=9.2.0 <=9.2.1) +3 more potentially affected by CVE-2025-37731 via org.elasticsearch:elasticsearch-ssl-config (>=9.2.0 <=9.2.1)
org.elasticsearch:elasticsearch-ssl-config MAVEN version =9.2.0, =9.2.0, =9.2.0, =9.2.0, =9.2.0, =9.2.0, =9.2.1 Source cves: CVE-2025-37731 Source advisory: SNYK:JAVA-ORGELASTICSEARCH-14417579...
@27works/posto (>=2.0.0 <=2.0.2), @abdul778/page-editor (>=0.1.0 <=0.41.0) +640 more potentially affected by CVE-2020-12827 +1 more via mjml (>=0.1.0 <=5.0.0-alpha.6)
mjml NPM version =0.1.0, =2.0.0, =0.1.0, =0.1.0, =0.1.0, =0.0.122, =0.16.9, =1.0.4, =1.0.0, =0.0.3, =1.0.1, =2.0.0, =12.5.0, =1.0.0, =1.3.0 and more Source cves: CVE-2020-12827, CVE-2025-67898 Source advisory: OSV:GHSA-45H5-66JX-R2WF...
@27works/posto (>=2.0.0 <=2.0.2), @abc45676/mailer (=1.0.0) +788 more potentially affected by CVE-2025-67898 via mjml-core (>=2.3.3 <=5.3.0)
mjml-core NPM version =2.3.3, =2.0.0, =0.1.0, =0.1.0, =0.1.0, =0.0.122, =0.16.9, =1.0.4, =1.0.0, =0.0.1, =0.0.10, =1.0.0, =0.0.1, =0.0.3, =1.0.1, =1.0.6 and more Source cves: CVE-2025-67898 Source advisory: SNYK:JS-MJMLCORE-14417285...
com.aizuda:snail-job-client-common (>=1.0.0 <=1.10.0-beta1), com.aizuda:snail-job-client-job-core (>=1.0.0 <=1.10.0-beta1) +29 more potentially affected by CVE-2025-14674 via com.aizuda:snail-job-common-core (>=1.0.0-beta1 <=1.6.0)
com.aizuda:snail-job-common-core MAVEN version =1.0.0-beta1, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.10.0, =1.0.0, =1.0.0, =1.1.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.10.0-beta1 and more Source cves: CVE-2025-14674 Source advisory: SNYK:JAVA-COMAIZUDA-14426463...
card-backend-scdc (>=0.4.0 <=0.5.0), cfs_openpgp (=0.1.0) +43 more potentially affected by CVE-2025-67897 via sequoia-openpgp (>=0.11.0 <=1.22.0)
sequoia-openpgp CARGO version =0.11.0, =0.4.0, =0.0.1, =0.5.0, =0.3.0, =0.12.0, =0.1.0, =0.10.1, =0.10.1, =0.0.1, =0.0.1, =0.2.2 and more Source cves: CVE-2025-67897 Source advisory: OSV:GHSA-V6X3-9R38-R27Q...
ai.catboost:catboost-spark_4.0_2.13 (=1.2.10), ai.catboost:catboost-spark_4.1_2.13 (=1.2.10) +541 more potentially affected by CVE-2025-67721 via io.airlift:aircompressor (=2.0.2)
io.airlift:aircompressor MAVEN version =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on io.airlift:aircompressor and may be impacted: - ai.catboost:catboost-spark4.02.13 =1.2.10 - ai.catboost:catboost-spark4.12.13 =1.2.10 - ai.h2o:h2o-orc-parser...
io.github.jordepic:dataharness-trino (>=1.0 <=2.0), io.trino.gateway:gateway-ha (>=14 <=16) +19 more potentially affected by CVE-2025-67721 via io.airlift:aircompressor-v3 (>=3.0 <=3.3)
io.airlift:aircompressor-v3 MAVEN version =3.0, =1.0, =14, =466, =457, =464, =457, =457, =457, =457, =457, =457, =457, =457, =469, =472, =475 and more Source cves: CVE-2025-67721 Source advisory: SNYK:JAVA-IOAIRLIFT-14412704...
ai.catboost:catboost-spark_2.3_2.11 (>=0.25 <=1.2.7), ai.catboost:catboost-spark_4.0_2.13 (=1.2.10) +1006 more potentially affected by CVE-2025-67721 via io.airlift:aircompressor (>=0.3 <=2.0.2)
io.airlift:aircompressor MAVEN version =0.3, =0.25, =3.10.0.5, =3.34.0.3-1-2.3, =2.3.0, =2.3.0, =0.0.3, =9.0.0, =9.0.0, =9.0.0, =9.0.0, =9.0.0, =9.7.1 and more Source cves: CVE-2025-67721 Source advisory: OSV:GHSA-VX9Q-RHV9-3JVG...
io.github.jordepic:dataharness-trino (>=1.0 <=2.0), io.trino.gateway:gateway-ha (>=14 <=16) +19 more potentially affected by CVE-2025-67721 via io.airlift:aircompressor-v3 (>=3.0 <=3.3)
io.airlift:aircompressor-v3 MAVEN version =3.0, =1.0, =14, =466, =457, =464, =457, =457, =457, =457, =457, =457, =457, =457, =469, =472, =475 and more Source cves: CVE-2025-67721 Source advisory: OSV:GHSA-VX9Q-RHV9-3JVG...
@4kda/vuetify-cifrum-components (>=0.0.5 <=0.0.51), @4kda/vuetify-cifrum-icons (>=0.0.13 <=0.0.15) +1183 more potentially affected by CVE-2025-8083 via vuetify (>=2.2.0 <=2.7.2)
vuetify NPM version =2.2.0, =0.0.5, =0.0.13, =0.0.13, =0.0.13, =1.0.8, =0.1.0, =0.0.1, =0.3.0, =2.0.5, =0.0.5, =0.1.0, =0.1.3, =0.1.22 and more Source cves: CVE-2025-8083 Source advisory: OSV:GHSA-3JP5-5F8R-Q2WG...
@4kda/vuetify-cifrum-components (>=0.0.5 <=0.0.51), @4kda/vuetify-cifrum-icons (>=0.0.13 <=0.0.15) +1194 more potentially affected by CVE-2025-8082 via vuetify (>=2.0.0 <=3.0.0-beta.7)
vuetify NPM version =2.0.0, =0.0.5, =0.0.13, =0.0.13, =0.0.13, =1.0.8, =0.1.0, =0.0.1, =0.3.0, =2.0.5, =0.0.5, =0.1.0, =0.1.3, =0.1.22 and more Source cves: CVE-2025-8082 Source advisory: OSV:GHSA-9W3X-85MW-4FWM...
@4kda/vuetify-cifrum-components (>=0.0.5 <=0.0.51), @4kda/vuetify-cifrum-icons (>=0.0.13 <=0.0.15) +1183 more potentially affected by CVE-2025-8083 via vuetify (>=2.2.0 <=2.7.2)
vuetify NPM version =2.2.0, =0.0.5, =0.0.13, =0.0.13, =0.0.13, =1.0.8, =0.1.0, =0.0.1, =0.3.0, =2.0.5, =0.0.5, =0.1.0, =0.1.3, =0.1.22 and more Source cves: CVE-2025-8083 Source advisory: SNYK:JS-VUETIFY-14412764...
@4kda/vuetify-cifrum-components (>=0.0.5 <=0.0.51), @4kda/vuetify-cifrum-icons (>=0.0.13 <=0.0.15) +1194 more potentially affected by CVE-2025-8082 via vuetify (>=2.0.0 <=3.0.0-beta.7)
vuetify NPM version =2.0.0, =0.0.5, =0.0.13, =0.0.13, =0.0.13, =1.0.8, =0.1.0, =0.0.1, =0.3.0, =2.0.5, =0.0.5, =0.1.0, =0.1.3, =0.1.22 and more Source cves: CVE-2025-8082 Source advisory: SNYK:JS-VUETIFY-14412705...
@cedarjs/api-server (>=1.0.0-canary.12879 <=1.0.0-canary.12881), @cedarjs/cli (>=1.0.0-canary.12879 <=1.0.0-canary.12881) +10 more potentially affected by CVE-2025-67779 via react-server-dom-webpack (=19.2.2)
react-server-dom-webpack NPM version =19.2.2 is affected by a known vulnerability. The following packages have a transitive dependency on react-server-dom-webpack and may be impacted: - @cedarjs/api-server =1.0.0-canary.12879, =1.0.0-canary.12879, =1.0.0-canary.12879, =1.0.0-canary.12879,...
org.apache.hugegraph:hg-pd-dist (=1.5.0), org.apache.hugegraph:hg-pd-service (=1.5.0) +1 more potentially affected by CVE-2025-26866 via org.apache.hugegraph:hg-pd-core (=1.5.0)
org.apache.hugegraph:hg-pd-core MAVEN version =1.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.hugegraph:hg-pd-core and may be impacted: - org.apache.hugegraph:hg-pd-dist =1.5.0 - org.apache.hugegraph:hg-pd-service =1.5.0 -...
ap-proxy-client (>=0.3.0 <=0.8.0), ap-proxy-protocol (>=0.3.0 <=0.8.0) +2 more potentially affected by CVE-2026-22705 via ml-dsa (=0.0.4)
ml-dsa CARGO version =0.0.4 is affected by a known vulnerability. The following packages have a transitive dependency on ml-dsa and may be impacted: - ap-proxy-client =0.3.0, =0.3.0, =0.1.0, =0.0.1-pre.0, =0.0.12 Source cves: CVE-2026-22705 Source advisory: OSV:RUSTSEC-2025-0144...