26517 matches found
@17mkh/ui (=0.0.2), @acedatacloud/nexior (>=3.72.0 <=3.274.2) +691 more potentially affected by CVE-2025-57665 via element-plus (>=1.0.1-beta.0 <=2.11.0)
element-plus NPM version =1.0.1-beta.0, =3.72.0, =2.0.1, =0.0.1, =0.0.1, =0.0.1, =0.6.6, =0.3.3, =0.0.1, =0.0.1, =0.1.15, =0.0.1, =0.0.4-alpha.8 and more Source cves: CVE-2025-57665 Source advisory: OSV:GHSA-5M5X-9J46-H678...
1997ckf-ui-comp (>=0.0.9 <=0.0.17), 1data-business (>=0.0.1 <=0.0.3) +6013 more potentially affected by CVE-2025-57665 via element-plus (>=1.0.1-beta.0 <=2.9.9)
element-plus NPM version =1.0.1-beta.0, =0.0.9, =0.0.1, =1.0.0, =0.1.11, =0.1.0, =1.0.0, =0.3.1, =1.0.0-beta.0, =1.0.0, =0.0.1-alpha.10, =1.0.6, =0.1.20, =0.1.27 and more Source cves: CVE-2025-57665 Source advisory: SNYK:JS-ELEMENTPLUS-12670415...
org.apache.dolphinscheduler:dolphinscheduler-alert-all (>=3.2.0 <=3.3.0-alpha), org.apache.dolphinscheduler:dolphinscheduler-alert-server (>=3.0.0 <=3.3.0-alpha) +1 more potentially affected by CVE-2024-43115 via org.apache.dolphinscheduler:dolphinscheduler-alert-script (>=3.0.0-alpha <=3.3.0-alpha)
org.apache.dolphinscheduler:dolphinscheduler-alert-script MAVEN version =3.0.0-alpha, =3.2.0, =3.0.0, =3.0.0, =3.0.6 Source cves: CVE-2024-43115 Source advisory: SNYK:JAVA-ORGAPACHEDOLPHINSCHEDULER-12840399...
keeshond_editor (>=0.1.0 <=0.13.0), keeshond_migrator (>=0.1.0 <=0.1.1) +2 more potentially affected by unknown CVE via toodee (>=0.2.4 <=0.3.0)
toodee CARGO version =0.2.4, =0.1.0, =0.1.0, =0.10.0, =0.13.0 Source cves: unknown CVE Source advisory: OSV:GHSA-PFP7-VXGR-83PW...
drivesync (=0.1.0), geckopanda (>=0.1.0 <=0.2.0) +601 more potentially affected by unknown CVE via google-apis-common (>=4.0.1 <=6.0.4)
google-apis-common CARGO version =4.0.1, =0.1.0, =5.0.2+20230114, =5.0.2+20230123, =5.0.2+20230120, =5.0.2+20200708, =5.0.2+20230123, =5.0.2+20230123, =5.0.2+20210330, =5.0.4+20210330 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0066...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58757 via monai (>=0.4.0 <=1.5.1)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58757 Source advisory: OSV:PYSEC-2025-142...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58755 via monai (>=0.4.0 <=1.5.1)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58755 Source advisory: OSV:PYSEC-2025-140...
2404-segmentation-pipeline (>=0.1.0 <=1.0.0), abdomenatlas (>=0.1.0 <=0.1.1) +58 more potentially affected by CVE-2025-58756 via monai (>=0.4.0 <=1.5.1)
monai PYPI version =0.4.0, =0.1.0, =0.1.0, =0.0.1, =1.0.0, =0.0.0, =0.0.1, =2.0.1, =0.1.5, =0.4.2, =0.1.0, =1.0.12, =1.0.0, =1.2.0 and more Source cves: CVE-2025-58756 Source advisory: OSV:PYSEC-2025-141...
@angular/build (>=20.1.0 <=20.2.0-next.2), @atomazing-org/super-app-host (>=0.0.4 <=0.0.8) +55 more potentially affected by CVE-2025-58752 via vite (>=7.0.0 <=7.0.6)
vite NPM version =7.0.0, =20.1.0, =0.0.4, =0.2.9, =1.190.0, =0.1.0, =0.0.1750946288791, =0.0.2, =0.0.7, =0.0.2, =0.0.1, =0.1.34, =0.1.35 and more Source cves: CVE-2025-58752 Source advisory: SNYK:JS-VITE-12558116...
@adhd/react-hooks (=2.2.1), @aklesky/vite-config (>=0.7.9 <=0.9.0) +431 more potentially affected by CVE-2025-58752 via vite (>=5.0.0-beta.0 <=5.4.2)
vite NPM version =5.0.0-beta.0, =0.7.9, =17.1.0, =18.0.0, =1.0.25-beta.0, =0.5.0, =2.0.0-beta.0, =0.22.0, =1.0.1, =1.0.0, =1.0.0, =0.9.0, =0.9.8 and more Source cves: CVE-2025-58752 Source advisory: SNYK:JS-VITE-12558116...
@1771technologies/oneplay (>=0.0.1 <=0.0.6), @aicblock/cli (>=1.0.0 <=1.0.1) +159 more potentially affected by CVE-2025-58752 via vite (>=6.0.0 <=6.3.5)
vite NPM version =6.0.0, =0.0.1, =1.0.0, =1.0.0, =0.2.0, =4.25.19-patch.2, =19.1.0, =0.55.0, =0.21.2-4.1, =0.4.2, =0.1.10, =0.0.1, =1.0.0, =1.0.3 and more Source cves: CVE-2025-58752 Source advisory: SNYK:JS-VITE-12558116...
org.webjars.npm:vitepress (=1.0.0-draft.8) potentially affected by CVE-2025-58752 via org.webjars.npm:vite (=3.0.0-beta.9)
org.webjars.npm:vite MAVEN version =3.0.0-beta.9 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:vite and may be impacted: - org.webjars.npm:vitepress =1.0.0-draft.8 Source cves: CVE-2025-58752 Source advisory:...
@altipla/directus-sdk-utils (=0.7.2), @angular/build (>=20.2.0 <=21.0.0-rc.1) +48 more potentially affected by CVE-2025-58752 via vite (>=7.1.0 <=7.1.4)
vite NPM version =7.1.0, =20.2.0, =2.1.2-alpha.0, =0.0.0, =2.14.0, =5.0.0-beta.4, =30.0.0, =16.0.1, =2.19.8, =2.19.8, =14.314.0, =9.6.3, =0.0.12, =2.14.2, =2.14.4 and more Source cves: CVE-2025-58752 Source advisory: SNYK:JS-VITE-12558116...
@clidey/dory (=0.35.0), @praxlannister/mdexport-core (=2.0.0) +6 more potentially affected by CVE-2025-58751 via sirv (>=3.0.0 <=3.0.1)
sirv NPM version =3.0.0, =0.0.1, =9.0.0, =0.1.0, =0.12.3, =1.6.0, =1.7.0 Source cves: CVE-2025-58751 Source advisory: SNYK:JS-SIRV-12558119...
@arturl/pulumi-mcp-server (=0.1.9), @collegue/mcp (>=1.0.1 <=1.0.2) +31 more potentially affected by CVE-2025-58444 via @modelcontextprotocol/inspector-client (>=0.10.2 <=0.15.0)
@modelcontextprotocol/inspector-client NPM version =0.10.2, =1.0.1, =2.0.10, =0.0.0-semantically-released, =0.0.0-alpha.0, =2.1.0, =2.1.0, =0.10.0, =0.15.0 and more Source cves: CVE-2025-58444 Source advisory: SNYK:JS-MODELCONTEXTPROTOCOLINSPECTORCLIENT-12704855...
@arturl/pulumi-mcp-server (=0.1.9), @collegue/mcp (>=1.0.1 <=1.0.2) +29 more potentially affected by CVE-2025-58444 via @modelcontextprotocol/inspector (>=0.10.2 <=0.15.0)
@modelcontextprotocol/inspector NPM version =0.10.2, =1.0.1, =2.0.10, =0.0.0-semantically-released, =0.0.0-alpha.0, =2.1.0, =2.1.0, =2.1.2 - @mseep/git-mcp-server =2.1.4 - @nvhien20vn/git-mcp-server =0.0.1 and more Source cves: CVE-2025-58444 Source advisory: OSV:GHSA-G9HG-QHMF-Q45M...
@open-xchange/appsuite-codeceptjs (>=0.2.0 <=0.6.2), create-fintech-automation-test (>=1.0.4 <=1.0.5) +1 more potentially affected by CVE-2025-57285 via codeceptjs (>=3.6.10 <=3.6.7)
codeceptjs NPM version =3.6.10, =0.2.0, =1.0.4, =1.0.0, =1.0.4 Source cves: CVE-2025-57285 Source advisory: OSV:GHSA-34W8-MCWR-VG29...
@open-xchange/appsuite-codeceptjs (>=0.2.0 <=0.6.2), c-configure (>=1.0.1 <=2.1.5) +3 more potentially affected by CVE-2025-57285 via codeceptjs (>=3.0.7 <=3.6.7)
codeceptjs NPM version =3.0.7, =0.2.0, =1.0.1, =7.0.23, =1.0.4, =1.0.0, =1.0.4 Source cves: CVE-2025-57285 Source advisory: SNYK:JS-CODECEPTJS-12670804...
11x-wagtail-blog (>=0.0.0 <=0.2.0), aldryn-django (>=5.0.2.0 <=5.0.11.0) +253 more potentially affected by CVE-2025-57833 via django (>=5.0.0 <=5.1.11)
django PYPI version =5.0.0, =0.0.0, =5.0.2.0, =0.0.15, =1.14.3, =0.0.20, =0.0.13, =0.0.19, =0.0.34, =0.0.50, =0.0.5, =0.0.11, =1.0.3, =0.1.0, =0.2.5 and more Source cves: CVE-2025-57833 Source advisory: OSV:GHSA-6W2R-R2M5-XQ5W...
a3m (=0.1.0), aa-charlink (>=0.1.1 <=1.0.0) +2522 more potentially affected by CVE-2025-57833 via django (>=1.10.0 <=4.2.23)
django PYPI version =1.10.0, =0.1.1, =1.0.0, =1.0.0, =0.1.0a0, =0.11.0a0, =0.1.1, =1.1.0, =1.4.0, =1.4.2 - adede =4.1.0 and more Source cves: CVE-2025-57833 Source advisory: OSV:GHSA-6W2R-R2M5-XQ5W...
aa-altcorp (>=0.1.2b0 <=1.1.1), aa-alumni (>=0.0.1a1 <=1.0.1) +1461 more potentially affected by CVE-2025-57833 via django (>=5.2.0 <=5.2.5)
django PYPI version =5.2.0, =0.1.2b0, =0.0.1a1, =0.1.1, =3.1.0b1, =1.0.3, =0.0.1a2, =0.1.0, =0.2.0, =1.0.0, =1.1.0b3, =0.1.0b1, =0.1.0, =1.1.0 and more Source cves: CVE-2025-57833 Source advisory: OSV:GHSA-6W2R-R2M5-XQ5W...
keeshond_editor (>=0.1.0 <=0.13.0), keeshond_migrator (>=0.1.0 <=0.1.1) +2 more potentially affected by unknown CVE via toodee (>=0.2.4 <=0.3.0)
toodee CARGO version =0.2.4, =0.1.0, =0.1.0, =0.10.0, =0.13.0 Source cves: unknown CVE Source advisory: SNYK:RUST-TOODEE-12670801...
08cms (=1.0.0), 10secondsofcode-custom (=1.0.0) +3093 more potentially affected by CVE-2019-25225 via sanitize-html (>=0.1.4 <=1.7.0)
sanitize-html NPM version =0.1.4, =1.0.0, =1.0.0, =1.0.0, =0.6.0, =0.1.0, =0.1.0, =11.1.0, =1.0.0, =1.0.1, =0.2.0, =0.1.0, =0.19.1-rc.2, =0.19.1-rc.4 and more Source cves: CVE-2019-25225 Source advisory: OSV:GHSA-QHXP-V273-G94H...
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (>=0.2.0 <=0.28.0), ai.ancf.lmos:lmos-router-llm-in-spring-cloud-gateway-demo (=0.1.0) +111 more potentially affected by CVE-2025-41243 via org.springframework.cloud:spring-cloud-gateway-server (>=4.0.0 <=4.2.4)
org.springframework.cloud:spring-cloud-gateway-server MAVEN version =4.0.0, =0.2.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =2023.4.1.0, =1.0.5, =1.0.4, =3.0.0.1, =jdk17-0.0.1 - cn.warpin.maven-central:common-gateway-security =0.0.15 and more Source cves: CVE-2025-41243 Source...
armory_cli (>=0.3.3 <=0.3.28), armory_lib (>=0.1.0 <=0.3.28) +157 more potentially affected by unknown CVE via crypto-hash (=0.3.4)
crypto-hash CARGO version =0.3.4 is affected by a known vulnerability. The following packages have a transitive dependency on crypto-hash and may be impacted: - armorycli =0.3.3, =0.1.0, =0.1.0, =0.1.0, =0.10.0, =0.10.0, =0.23.0, =0.1.0, =0.5.0, =0.3.10, =0.1.0, =0.2.2, =0.6.3 and more Source cve...
ch.nexsol-tech.gateway:sample-gateway (>=1.2.0 <=1.3.1), ch.nexsol-tech.gateway:spring-cloud-gateway-database (>=1.2.0 <=1.3.1) +36 more potentially affected by CVE-2025-41243 via org.springframework.cloud:spring-cloud-gateway-server (=4.3.0)
org.springframework.cloud:spring-cloud-gateway-server MAVEN version =4.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.springframework.cloud:spring-cloud-gateway-server and may be impacted: - ch.nexsol-tech.gateway:sample-gateway =1.2.0, =1.2.0...
alexa (>=0.1.0 <=0.1.2), alipay-rs (>=0.2.0 <=0.4.6) +226 more potentially affected by unknown CVE via iron (>=0.1.21 <=0.6.1)
iron CARGO version =0.1.21, =0.1.0, =0.2.0, =0.3.2, =0.0.1, =0.8.0, =0.14.0, =0.5.0, =0.7.0, =0.0.6, =0.1.0, =0.1.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0061...
GuiNistRs (=0.1.0), LemoGUI (=0.0.1-nightly) +413 more potentially affected by unknown CVE via servo-fontconfig (>=0.4.0 <=0.5.1)
servo-fontconfig CARGO version =0.4.0, =0.5.0, =0.2.0, =0.5.0, =0.9.0, =0.1.0, =0.1.0, =0.8.0, =0.4.0, =0.9.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0059...
com.adobe.cq.commerce:cq-commerce-hybris-impl (>=5.6.100 <=6.4.4), com.adobe.cq.media:cq-media-publishing-dps-integration (=5.6.16) +93 more potentially affected by CVE-2025-58782 via org.apache.jackrabbit:jackrabbit-core (>=2.0-beta1 <=2.22.1)
org.apache.jackrabbit:jackrabbit-core MAVEN version =2.0-beta1, =5.6.100, =2.0.6, =1.0.10, =1.0.8, =2.0.5, =2.0.0, =0.0.1, =2.1.1, =2.5.0, =2.1.1, =2.5.0, =2.1.1, =4.3.5 and more Source cves: CVE-2025-58782 Source advisory: SNYK:JAVA-ORGAPACHEJACKRABBIT-12578562...
com.adobe.cq.commerce:cq-commerce-hybris-impl (>=5.6.100 <=6.4.4), com.adobe.cq.media:cq-media-publishing-dps-integration (=5.6.16) +119 more potentially affected by CVE-2025-58782 via org.apache.jackrabbit:jackrabbit-core (>=1.2.1 <=2.22.1)
org.apache.jackrabbit:jackrabbit-core MAVEN version =1.2.1, =5.6.100, =2.0.6, =1.0.10, =1.0.8, =2.0.5, =2.0.0, =0.0.1, =2.1.1, =2.5.0, =2.1.1, =2.5.0, =2.1.1, =4.3.5 and more Source cves: CVE-2025-58782 Source advisory: OSV:GHSA-CXVC-G8F2-4GMM...
be.hobbiton.maven:linux-packaging-maven-plugin (>=1.0.0 <=1.1.2), biz.netcentric.aem.sysenvtools:apply-system-env-install-hook (>=1.2.0 <=1.2.3) +1031 more potentially affected by CVE-2025-58782 via org.apache.jackrabbit:jackrabbit-jcr-commons (>=1.1.1 <=2.22.1)
org.apache.jackrabbit:jackrabbit-jcr-commons MAVEN version =1.1.1, =1.0.0, =1.2.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.8.0, =2.0.0, =2.5.0, =2.5.4, =2.5.4, =4.2.0, =1.0.0, =1.0.0, =1.2.1 - biz.netcentric.fil...
biz.netcentric.aem.sysenvtools:apply-system-env-install-hook (>=1.2.0 <=1.2.3), biz.netcentric.aem.sysenvtools:system-env-change-listener (>=1.2.0 <=1.2.3) +410 more potentially affected by CVE-2025-58782 via org.apache.jackrabbit:jackrabbit-jcr-commons (>=2.0-beta1 <=2.22.1)
org.apache.jackrabbit:jackrabbit-jcr-commons MAVEN version =2.0-beta1, =1.2.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.8.0, =2.0.0, =2.5.0, =2.5.4, =2.5.4, =4.2.0, =1.0.0, =1.0.0, =1.0.0, =1.4.0 - biz.ne...
RagatagSorter (>=3.2.0 <=3.2.1), aa2nucaln (=0.1.1) +418 more potentially affected by unknown CVE via custom_derive (=0.1.7)
customderive CARGO version =0.1.7 is affected by a known vulnerability. The following packages have a transitive dependency on customderive and may be impacted: - RagatagSorter =3.2.0, =0.9.0, =0.4.0, =0.1.1, =0.2.0, =0.4.3, =0.1.0, =0.1.0, =0.1.0-alpha.1, =0.1.0, =3.1.3, =3.10.0 and more Source...
wikiteam3 (>=4.4.3 <=4.4.7) potentially affected by CVE-2025-58438 via internetarchive (=5.4.1)
internetarchive PYPI version =5.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on internetarchive and may be impacted: - wikiteam3 =4.4.3, =4.4.7 Source cves: CVE-2025-58438 Source advisory: SNYK:PYTHON-INTERNETARCHIVE-12549189...
agentics-py (>=0.0.0 <=0.0.5), caption-flow (>=0.1.0 <=0.4.2) +9 more potentially affected by CVE-2025-58446 via xgrammar (=0.1.23)
xgrammar PYPI version =0.1.23 is affected by a known vulnerability. The following packages have a transitive dependency on xgrammar and may be impacted: - agentics-py =0.0.0, =0.1.0, =1.0.1rc1, =0.0.4, =1.0.0, =0.1.1, =0.2.0, =0.9.2.post1, =0.10.0 Source cves: CVE-2025-58446 Source advisory:...
com.47deg:freestyle-http-http4s_2.11 (=0.1.0), com.azavea.geotrellis:geotrellis-server-core_2.11 (>=4.0.1 <=4.2.0) +173 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.11 (>=0.9.1 <=2.1.0)
co.fs2:fs2-io2.11 MAVEN version =0.9.1, =4.0.1, =4.0.1, =4.0.1, =0.4.0, =0.4.0, =5.0.0, =2.0.0, =0.12.7, =0.12.7, =0.12.7, =0.14.1, =0.12.7, =1.1.0, =1.2.1 and more Source cves: CVE-2025-58369 Source advisory: SNYK:JAVA-COFS2-13180115...
ch.epfl.bluebrain.nexus:delta-app_2.13 (>=1.10.0-M8 <=1.10.0-M13), ch.epfl.bluebrain.nexus:delta-archive-plugin_2.13 (>=1.10.0-M8 <=1.10.0-M13) +644 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.13 (>=3.0.0 <=3.12.0)
co.fs2:fs2-io2.13 MAVEN version =3.0.0, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =1.10.0-M8, =3.10-4b5f50b, =0.29.0, =1.0.0, =0.11.0, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-377-020cf9e and more Source cves: CVE-2025-58369 Source advisory:...
ch.epfl.bluebrain.nexus:cli_2.13 (>=1.5.0 <=1.6.1), ch.epfl.bluebrain.nexus:delta-app_2.13 (>=1.9.0-M1 <=1.9.0-M12-2) +513 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.13 (>=2.0.0 <=2.5.12)
co.fs2:fs2-io2.13 MAVEN version =2.0.0, =1.5.0, =1.9.0-M1, =1.8.0, =1.8.0, =1.8.0, =1.8.0, =1.5.0, =0.3.0, =0.22.0, =0.0.1, =0.2.0, =0.2.0, =0.1.0, =2.1.0, =2.7.2 and more Source cves: CVE-2025-58369 Source advisory: SNYK:JAVA-COFS2-12669992...
co.fs2:fs2-protocols_2.12 (>=3.10-4b5f50b <=3.12.0-RC2), com.47deg:github4s_2.12 (>=0.29.0 <=0.29.1) +435 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.12 (>=3.0.0 <=3.12.0)
co.fs2:fs2-io2.12 MAVEN version =3.0.0, =3.10-4b5f50b, =0.29.0, =1.0.0, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898,...
ch.j3t:zio-prefetcher_2.12 (>=0.3.0 <=0.7.0), com.47deg:embedded-cassandra-core_2.12 (=0.0.7) +465 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.12 (>=2.0.0 <=2.5.12)
co.fs2:fs2-io2.12 MAVEN version =2.0.0, =0.3.0, =0.22.0, =0.0.1, =0.13.2, =0.2.6, =0.3.0, =0.2.0, =0.1.0, =0.7.0, =0.7.0, =0.18.1, =0.17.0, =0.17.0, =0.1.21, =0.19.3 and more Source cves: CVE-2025-58369 Source advisory: SNYK:JAVA-COFS2-12669991...
ba.sake:hepek-http4s_3 (>=0.31.0 <=0.34.0), ch.linkyard.mcp:jsonrpc2-stdio_3 (>=0.1.0 <=0.3.2) +661 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_3 (>=3.0-117-375521f <=3.12.0)
co.fs2:fs2-io3 MAVEN version =3.0-117-375521f, =0.31.0, =0.1.0, =0.2.0, =0.1.0, =3.10-4b5f50b, =0.29.0, =0.2.1, =1.0.0, =0.1.0, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-377-020cf9e and more Source cves: CVE-2025-58369 Source advisory:...
com.avast:sst-app-monix_3 (>=0.17.0 <=0.19.3), com.avast:sst-app-zio_3 (>=0.17.0 <=0.19.3) +70 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_3 (>=2.5.10 <=2.5.12)
co.fs2:fs2-io3 MAVEN version =2.5.10, =0.17.0, =0.17.0, =0.16.0, =0.17.0, =0.16.0, =0.17.0, =0.16.0, =0.16.0, =0.17.0, =0.17.0, =0.16.0, =0.16.0, =0.16.0, =0.17.0, =0.17.0, =0.19.3 and more Source cves: CVE-2025-58369 Source advisory: SNYK:JAVA-COFS2-12669993...
agentics-py (>=0.0.0 <=0.0.5), caption-flow (>=0.1.0 <=0.4.2) +9 more potentially affected by CVE-2025-58446 via xgrammar (=0.1.23)
xgrammar PYPI version =0.1.23 is affected by a known vulnerability. The following packages have a transitive dependency on xgrammar and may be impacted: - agentics-py =0.0.0, =0.1.0, =1.0.1rc1, =0.0.4, =1.0.0, =0.1.1, =0.2.0, =0.9.2.post1, =0.10.0 Source cves: CVE-2025-58446 Source advisory:...
biliarchiver (>=0.0.9 <=0.1.20), curation-utils (=0.1.4) +24 more potentially affected by CVE-2025-58438 via internetarchive (>=1.1.0 <=5.4.1)
internetarchive PYPI version =1.1.0, =0.0.9, =0.0.1, =0.1.1, =0.3.0, =0.1.1, =0.1.0, =0.1.25, =0.1.0, =0.1.0, =0.1.0, =0.0.36, =1.0.0, =0.0.18, =0.0.30 and more Source cves: CVE-2025-58438 Source advisory: OSV:GHSA-WX3R-V6H7-FRJP...
com.azavea.geotrellis:geotrellis-server-core_2.11 (>=4.0.1 <=4.2.0), com.azavea.geotrellis:geotrellis-server-ogc_2.11 (>=4.0.1 <=4.2.0) +145 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.11 (>=1.0.0-M1 <=1.1.0-M1)
co.fs2:fs2-io2.11 MAVEN version =1.0.0-M1, =4.0.1, =4.0.1, =4.0.1, =0.4.0, =0.4.0, =5.0.0, =2.0.0, =1.1.0, =1.0-M1, =0.10.0, =0.11.0, =0.1.0, =0.0.3, =0.0.3, =0.0.8 and more Source cves: CVE-2025-58369 Source advisory: OSV:GHSA-RRW2-PX9J-QFFJ...
co.fs2:fs2-protocols_2.12 (>=3.10-4b5f50b <=3.12.1), com.47deg:github4s_2.12 (>=0.29.0 <=0.29.1) +440 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.12 (>=3.0.0-M7 <=3.12.1)
co.fs2:fs2-io2.12 MAVEN version =3.0.0-M7, =3.10-4b5f50b, =0.29.0, =1.0.0, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898, =1.0-148-8da8898,...
ch.epfl.bluebrain.nexus:cli_2.13 (>=1.5.0 <=1.6.1), ch.epfl.bluebrain.nexus:delta-app_2.13 (>=1.9.0-M1 <=1.9.0-M12-2) +518 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.13 (>=1.1.0-M1 <=2.5.12)
co.fs2:fs2-io2.13 MAVEN version =1.1.0-M1, =1.5.0, =1.9.0-M1, =1.8.0, =1.8.0, =1.8.0, =1.8.0, =1.5.0, =0.3.0, =0.22.0, =0.0.1, =0.2.0, =0.2.0, =0.1.0, =2.1.0, =2.7.2 and more Source cves: CVE-2025-58369 Source advisory: OSV:GHSA-RRW2-PX9J-QFFJ...
ch.j3t:zio-prefetcher_2.12 (>=0.3.0 <=0.7.0), com.47deg:embedded-cassandra-core_2.12 (=0.0.7) +592 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.12 (>=0.9.2 <=2.5.12)
co.fs2:fs2-io2.12 MAVEN version =0.9.2, =0.3.0, =0.22.0, =0.0.1, =0.13.2, =0.2.6, =0.3.0, =0.2.0, =0.1.0, =0.6.1, =0.6.1, =0.18.1, =0.18.5 - com.avast:datadog4s-http4s2.12 =0.6.0 and more Source cves: CVE-2025-58369 Source advisory: OSV:GHSA-RRW2-PX9J-QFFJ...
com.github.pureconfig:pureconfig-fs2_2.11 (>=0.12.1 <=0.14.0), com.github.regis-leray:fs2-ftp_2.11 (>=0.3.0 <=0.5.0) +14 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.11 (>=2.0.1 <=2.1.0)
co.fs2:fs2-io2.11 MAVEN version =2.0.1, =0.12.1, =0.3.0, =3.3.0, =3.0.0, =3.0.0, =3.3.0, =2.0.0, =3.0.0-RC1, =1.2.0, =1.2.5, =1.3.8 and more Source cves: CVE-2025-58369 Source advisory: OSV:GHSA-RRW2-PX9J-QFFJ...
io.github.jmcardon:tsec-bouncy_2.13.0-M5 (>=0.1.0 <=0.1.0-M4), io.github.jmcardon:tsec-cipher-bouncy_2.13.0-M5 (>=0.1.0 <=0.1.0-M4) +41 more potentially affected by CVE-2025-58369 via co.fs2:fs2-io_2.13.0-M5 (>=1.0.3 <=1.0.4)
co.fs2:fs2-io2.13.0-M5 MAVEN version =1.0.3, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.20.0, =0.20.10 and more Source cves: CVE-2025-58369 Source advisory: OSV:GHSA-RRW2-PX9J-QFFJ...