26517 matches found
ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91), ai.chronon:service_2.12 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +2478 more potentially affected by CVE-2026-44890 via io.netty:netty-codec-redis (>=4.1.0.Final <=4.1.134.Final)
io.netty:netty-codec-redis MAVEN version =4.1.0.Final, =0.0.86, =0.0.86, =0.0.86, =3.30.1.1, =3.10.0.5, =0.2.3.5, =0.0.1, =2.0.24, =1.1.9, =0.0.1, =0.0.9 and more Source cves: CVE-2026-44890 Source advisory: OSV:GHSA-6GHJ-FRRJ-JJJ3...
ai.spice:spiceai (=0.6.0), cn.isqing.icloud:icloud-common-utils (>=4.0.3-M1 <=4.0.3.1) +431 more potentially affected by CVE-2026-44890 via io.netty:netty-codec-redis (>=4.2.0.Final <=4.2.14.Final)
io.netty:netty-codec-redis MAVEN version =4.2.0.Final, =4.0.3-M1, =1.21.9, =3.4.7, =25.4.1, =26.2.1, =7.9.0, =5.1.0, =5.1.0, =6.80, =0.2.2, =0.2.4 and more Source cves: CVE-2026-44890 Source advisory: OSV:GHSA-6GHJ-FRRJ-JJJ3...
ai.spice:spiceai (=0.6.0), cn.isqing.icloud:icloud-common-utils (>=4.0.3-M1 <=4.0.3.1) +431 more potentially affected by CVE-2026-44250 via io.netty:netty-codec-redis (>=4.2.0.Final <=4.2.14.Final)
io.netty:netty-codec-redis MAVEN version =4.2.0.Final, =4.0.3-M1, =1.21.9, =3.4.7, =25.4.1, =26.2.1, =7.9.0, =5.1.0, =5.1.0, =6.80, =0.2.2, =0.2.4 and more Source cves: CVE-2026-44250 Source advisory: SNYK:JAVA-IONETTY-17263194...
ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91), ai.chronon:service_2.12 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +2478 more potentially affected by CVE-2026-44250 via io.netty:netty-codec-redis (>=4.1.0.Final <=4.1.134.Final)
io.netty:netty-codec-redis MAVEN version =4.1.0.Final, =0.0.86, =0.0.86, =0.0.86, =3.30.1.1, =3.10.0.5, =0.2.3.5, =0.0.1, =2.0.24, =1.1.9, =0.0.1, =0.0.9 and more Source cves: CVE-2026-44250 Source advisory: OSV:GHSA-3244-J874-RHC2...
ai.chronon:service_2.11 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91), ai.chronon:service_2.12 (>=0.0.86 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +2478 more potentially affected by CVE-2026-44250 via io.netty:netty-codec-redis (>=4.1.0.Final <=4.1.134.Final)
io.netty:netty-codec-redis MAVEN version =4.1.0.Final, =0.0.86, =0.0.86, =0.0.86, =3.30.1.1, =3.10.0.5, =0.2.3.5, =0.0.1, =2.0.24, =1.1.9, =0.0.1, =0.0.9 and more Source cves: CVE-2026-44250 Source advisory: SNYK:JAVA-IONETTY-17263194...
ai.spice:spiceai (=0.6.0), cn.isqing.icloud:icloud-common-utils (>=4.0.3-M1 <=4.0.3.1) +431 more potentially affected by CVE-2026-44250 via io.netty:netty-codec-redis (>=4.2.0.Final <=4.2.14.Final)
io.netty:netty-codec-redis MAVEN version =4.2.0.Final, =4.0.3-M1, =1.21.9, =3.4.7, =25.4.1, =26.2.1, =7.9.0, =5.1.0, =5.1.0, =6.80, =0.2.2, =0.2.4 and more Source cves: CVE-2026-44250 Source advisory: OSV:GHSA-3244-J874-RHC2...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +4461 more potentially affected by CVE-2026-44249 via io.netty:netty-handler (>=4.2.0.Final <=4.2.14.Final)
io.netty:netty-handler MAVEN version =4.2.0.Final, =0.1.0, =0.1.0, =4.7.4, =4.7.4, =4.7.3, =4.7.3, =4.7.3, =4.7.3, =4.7.3, =26.3.0, =26.3.0, =26.3.0, =26.3.2 and more Source cves: CVE-2026-44249 Source advisory: SNYK:JAVA-IONETTY-17254120...
ai.agentican:agentican-framework-core (>=0.1.0-alpha.2 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +29726 more potentially affected by CVE-2026-44249 via io.netty:netty-handler (>=4.0.0.Alpha1 <=4.1.134.Final)
io.netty:netty-handler MAVEN version =4.0.0.Alpha1, =0.1.0-alpha.2, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.3, =0.1.0-alpha.2, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.28.0 and more Source cves:...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +4461 more potentially affected by CVE-2026-44249 via io.netty:netty-handler (>=4.2.0.Final <=4.2.14.Final)
io.netty:netty-handler MAVEN version =4.2.0.Final, =0.1.0, =0.1.0, =4.7.4, =4.7.4, =4.7.3, =4.7.3, =4.7.3, =4.7.3, =4.7.3, =26.3.0, =26.3.0, =26.3.0, =26.3.2 and more Source cves: CVE-2026-44249 Source advisory: OSV:GHSA-3QP7-7MW8-WX86...
ai.agentican:agentican-framework-core (>=0.1.0-alpha.2 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +29726 more potentially affected by CVE-2026-44249 via io.netty:netty-handler (>=4.0.0.Alpha1 <=4.1.134.Final)
io.netty:netty-handler MAVEN version =4.0.0.Alpha1, =0.1.0-alpha.2, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.3, =0.1.0-alpha.2, =0.1.0, =0.1.0, =0.2.0, =0.2.0, =0.28.0 and more Source cves:...
org.devocative.thallo:thallo-starter-fabric-chaincode (=1.0) potentially affected by CVE-2026-45581 via org.hyperledger.fabric-chaincode-java:fabric-chaincode-shim (=2.4.1)
org.hyperledger.fabric-chaincode-java:fabric-chaincode-shim MAVEN version =2.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on org.hyperledger.fabric-chaincode-java:fabric-chaincode-shim and may be impacted: -...
res (>=0.2.0 <=0.3.0), scroller-motion (>=0.0.1-beta.2 <=0.0.1-beta.3) potentially affected by CVE-2026-42890 via actual (>=0.2.0 <=0.4.0)
actual NPM version =0.2.0, =0.2.0, =0.0.1-beta.2, =0.0.1-beta.3 Source cves: CVE-2026-42890 Source advisory: OSV:GHSA-7RVM-XJPP-63R9...
aad-fastapi-dl37 (>=1.0.0 <=1.0.2), agentiq (>=1.2.0a20250730 <=1.2.0rc4) +166 more potentially affected by CVE-2026-41479 via authlib (>=1.0.0 <=1.6.1)
authlib PYPI version =1.0.0, =1.0.0, =1.2.0a20250730, =1.1.0, =1.2.0a20250730, =0.1.0, =0.1.0a1, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0a20250730, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0a20250730, =1.2.0a20250730, =1.2.0rc4 and more Source cves: CVE-2026-41479 Source advisory:...
apheris-auth (=0.23.0), apheris-cli (>=0.51.0 <=0.52.0) +1 more potentially affected by CVE-2026-41479 via authlib (=1.7.0)
authlib PYPI version =1.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on authlib and may be impacted: - apheris-auth =0.23.0 - apheris-cli =0.51.0, =1.3.0, =1.3.0b4 Source cves: CVE-2026-41479 Source advisory: OSV:GHSA-W8P2-R796-3VMQ...
aad-fastapi (>=1.0.0 <=1.1.2), aad-fastapi-dl37 (>=1.0.0 <=1.0.3) +231 more potentially affected by CVE-2026-41479 via authlib (>=0.10.0 <=1.6.1)
authlib PYPI version =0.10.0, =1.0.0, =1.0.0, =0.0.1, =1.0.2, =1.0.2, =1.2.0a20250730, =1.1.0, =1.2.0a20250730, =0.1.0, =0.1.0a1, =1.2.0, =1.2.0a20250730, =1.2.0a20250730, =1.2.0a20250730, =1.2.0, =1.2.1 and more Source cves: CVE-2026-41479 Source advisory: OSV:GHSA-W8P2-R796-3VMQ...
apheris-auth (=0.23.0), apheris-cli (>=0.51.0 <=0.52.0) +1 more potentially affected by CVE-2026-41479 via authlib (=1.7.0)
authlib PYPI version =1.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on authlib and may be impacted: - apheris-auth =0.23.0 - apheris-cli =0.51.0, =1.3.0, =1.3.0b4 Source cves: CVE-2026-41479 Source advisory: SNYK:PYTHON-AUTHLIB-17266082...
@omneedia/client-js (>=2.0.1 <=2.1.1), @omneedia/ssr (=0.0.2) +9 more potentially affected by CVE-2026-47430 via cordova-plugin-inappbrowser (>=3.2.0 <=5.0.0)
cordova-plugin-inappbrowser NPM version =3.2.0, =2.0.1, =0.5.72, =1.0.0-rc.3, =2.1.2, =0.0.1, =0.2.5, =0.2.7 - poad =2.1.1 - things-factory-on-tv =2.0.0 Source cves: CVE-2026-47430 Source advisory: SNYK:JS-CORDOVAPLUGININAPPBROWSER-17337040...
@brettparkhurst/kinetic (>=2.0.0 <=2.0.17), @omneedia/client-js (>=2.0.1 <=2.1.1) +19 more potentially affected by CVE-2026-47430 via cordova-plugin-inappbrowser (>=1.7.2 <=5.0.0)
cordova-plugin-inappbrowser NPM version =1.7.2, =2.0.0, =2.0.1, =0.5.72, =16.0.0, =1.2.0, =1.0.0-rc.3, =2.1.2, =0.0.1, =1.0.13, =0.0.1, =0.2.5, =0.2.7 and more Source cves: CVE-2026-47430 Source advisory: OSV:GHSA-Q42J-X8RQ-PJG6...
org.hswebframework.web:hsweb-system-authorization-oauth2 (>=4.0.8 <=5.0.1) potentially affected by CVE-2026-11477 via org.hswebframework.web:hsweb-authorization-oauth2 (>=4.0.10 <=5.0.1)
org.hswebframework.web:hsweb-authorization-oauth2 MAVEN version =4.0.10, =4.0.8, =5.0.1 Source cves: CVE-2026-11477 Source advisory: SNYK:JAVA-ORGHSWEBFRAMEWORKWEB-17232077...
ai.h2o:h2o-orc-parser (>=3.10.0.5 <=3.10.3.6), cc.chensoul.nacos:core-test (=2.5.2) +232 more potentially affected by CVE-2026-41720 via org.springframework.ldap:spring-ldap-core (>=2.4.0 <=2.4.4)
org.springframework.ldap:spring-ldap-core MAVEN version =2.4.0, =3.10.0.5, =1.2.0, =4.6.0, =4.6.0, =4.6.0, =4.6.0, =4.6.0, =4.7.0 and more Source cves: CVE-2026-41720 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORKLDAP-17260845...
ch.iterial.keycloak.plugins:keycloak-directus-plugin (>=0.1.0 <=0.7.0), com.c4-soft.springaddons:keycloak-grants-mapper (>=3.1.13-jdk1.8 <=3.1.14-jdk17) +219 more potentially affected by CVE-2026-11577 via org.keycloak:keycloak-services (>=10.0.0 <=9.0.3)
org.keycloak:keycloak-services MAVEN version =10.0.0, =0.1.0, =3.1.13-jdk1.8, =11.0.1, =1.2.6, =1.2.5, =0.1, =0.1, =1.0.1, =0.1, =1.0.1, =0.1, =1.2.0, =1.4.11 - com.github.wnameless.spring.boot.up:spring-boot-up-embedded-keycloak =24.3.0.0 -...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +2562 more potentially affected by CVE-2026-41710 via org.springframework.retry:spring-retry (>=2.0.0 <=2.0.12)
org.springframework.retry:spring-retry MAVEN version =2.0.0, =0.1.0, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.24, =1.0.27, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.7.0 - ai.superstream:spring-kafka =3.0.1-alpha1 and more Source cves: CVE-2026-41710 Source advisory:...
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (>=0.2.0 <=0.28.0), ai.ancf.lmos:lmos-operator (>=0.0.4 <=0.6.0) +9046 more potentially affected by CVE-2026-41843 via org.springframework:spring-webmvc (>=6.1.0 <=6.2.18)
org.springframework:spring-webmvc MAVEN version =6.1.0, =0.2.0, =0.0.4, =0.5.0, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.7.5, =0.8.3, =0.7.0, =0.5.0, =0.5.0, =0.8.7 and more Source cves: CVE-2026-41843 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254116...
africa.absa:inception-api (>=1.0.0 <=1.2.0), africa.absa:inception-codes-api (>=1.0.0 <=1.2.0) +11591 more potentially affected by CVE-2026-41841 via org.springframework:spring-webmvc (>=5.3.0 <=5.3.9)
org.springframework:spring-webmvc MAVEN version =5.3.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =4.4.0.2, =1.4.2, =1.6.6, =1.6.6.1 - ai.platon:distributed-lock-example =1.4.2 and more Source cves: CVE-2026-41841 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-1725452...
com.atomikos:transactions-spring-boot4 (=6.0.1), com.atomikos:transactions-spring-boot4-integration-tests (=6.0.1) +429 more potentially affected by CVE-2026-41855 via org.springframework:spring-jms (>=7.0.0-M7 <=7.0.7)
org.springframework:spring-jms MAVEN version =7.0.0-M7, =7.0.0, =3.0.0, =4.0.0-M2, =4.0.0-M2, =0.17.0, =26.1.0, =26.2.0 - com.solace.spring.boot:solace-jms-spring-boot-autoconfigure =6.0.0 - com.solace.spring.boot:solace-jms-spring-boot-starter =6.0.0 -...
ai.driftkit:driftkit-workflow-controllers (>=0.7.5 <=0.8.7), ai.driftkit:driftkit-workflow-engine-spring-boot-starter (>=0.7.0 <=0.8.7) +1200 more potentially affected by CVE-2026-41838 via org.springframework:spring-websocket (>=6.1.0 <=6.2.18)
org.springframework:spring-websocket MAVEN version =6.1.0, =0.7.5, =0.7.0, =0.5.0, =0.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.1, =1.0.6, =1.0.1, =1.0.31 and more Source cves: CVE-2026-41838 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254123...
ai.platon.pulsar:pulsar-e2e-tests (>=4.5.0 <=4.6.0), ai.platon.pulsar:pulsar-it-tests (>=4.5.0 <=4.7.4) +2427 more potentially affected by CVE-2026-41841 via org.springframework:spring-webmvc (>=7.0.0-M1 <=7.0.7)
org.springframework:spring-webmvc MAVEN version =7.0.0-M1, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =2.0.0, =2.0.0, =0.1.1, =0.2.0, =0.5.0, =0.7.0, =0.5.0, =0.5.0, =0.10.2 and more Source cves: CVE-2026-41841 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254527...
ch.rasc:wamp2spring-security-servlet (=4.0.0), ch.rasc:wamp2spring-servlet (=4.0.0) +820 more potentially affected by CVE-2026-41838 via org.springframework:spring-websocket (>=7.0.0-M7 <=7.0.7)
org.springframework:spring-websocket MAVEN version =7.0.0-M7, =4.0.0.0-M2, =4.0.0.0-M2, =4.0.0, =1.21.9, =1.22.3 - com.aegisql:conveyor-service =1.7.3 - com.aizuda:snail-job-server-openapi =2.0.0 - com.aizuda:snail-job-server-service =2.0.0 - com.aizuda:snail-job-server-starter =2.0.0 -...
ai.platon.pulsar:pulsar-e2e-tests (>=4.5.0 <=4.6.0), ai.platon.pulsar:pulsar-it-tests (>=4.5.0 <=4.7.4) +2427 more potentially affected by CVE-2026-41843 via org.springframework:spring-webmvc (>=7.0.0-M1 <=7.0.7)
org.springframework:spring-webmvc MAVEN version =7.0.0-M1, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =2.0.0, =2.0.0, =0.1.1, =0.2.0, =0.5.0, =0.7.0, =0.5.0, =0.5.0, =0.10.2 and more Source cves: CVE-2026-41843 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254116...
ai.aitia:arrowhead-application-library-java-spring (>=4.4.0.2 <=4.6.0.0), br.com.m4rc310:br-com-m4rc310-graphql (=1.0.1) +1222 more potentially affected by CVE-2026-41838 via org.springframework:spring-websocket (>=5.3.0 <=5.3.9)
org.springframework:spring-websocket MAVEN version =5.3.0, =4.4.0.2, =5.3.0, =5.6.5, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =6.2.0, =6.8.0, =6.4.0, =5.3.0, =6.10.5 and more Source cves: CVE-2026-41838 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254123...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +4269 more potentially affected by CVE-2026-41840 via org.springframework:spring-web (>=7.0.0-M1 <=7.0.7)
org.springframework:spring-web MAVEN version =7.0.0-M1, =0.1.0, =0.1.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =2.0.0, =2.0.0, =0.1.0, =0.1.1, =4.7.0, =0.2.0, =0.5.0, =0.10.2 and more Source cves: CVE-2026-41840 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17253520...
africa.absa:inception-application (>=1.0.0 <=1.2.0), africa.absa:inception-test (>=1.0.0 <=1.2.0) +2168 more potentially affected by CVE-2026-41847 via org.springframework:spring-webflux (>=5.3.0 <=5.3.9)
org.springframework:spring-webflux MAVEN version =5.3.0, =1.0.0, =1.0.0, =j8.2.4.0, =v0.3.12, =v0.3.10, =v0.3.12, =4.1.27, =4.1.36, =1.3, =1.0, =1.0.4.R, =1.0.0, =1.0.3 and more Source cves: CVE-2026-41847 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17258561...
africa.absa:inception-application (>=1.0.0 <=1.2.0), africa.absa:inception-test (>=1.0.0 <=1.2.0) +2168 more potentially affected by CVE-2026-41841 via org.springframework:spring-webflux (>=5.3.0 <=5.3.9)
org.springframework:spring-webflux MAVEN version =5.3.0, =1.0.0, =1.0.0, =j8.2.4.0, =v0.3.12, =v0.3.10, =v0.3.12, =4.1.27, =4.1.36, =1.3, =1.0, =1.0.4.R, =1.0.0, =1.0.3 and more Source cves: CVE-2026-41841 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254528...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +743 more potentially affected by CVE-2026-41843 via org.springframework:spring-webflux (>=7.0.0-M7 <=7.0.7)
org.springframework:spring-webflux MAVEN version =7.0.0-M7, =0.1.0, =0.1.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.7.0, =0.0.1-alfa, =0.0.1-demo, =2.0.8, =3.0.1 and more Source cves: CVE-2026-41843 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254115...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +13926 more potentially affected by CVE-2026-41840 via org.springframework:spring-web (>=6.1.0 <=6.2.18)
org.springframework:spring-web MAVEN version =6.1.0, =0.1.0, =0.1.0, =0.2.0, =0.1.1, =0.1.1, =0.0.4, =0.1.0, =0.1.0, =0.5.0, =0.6.0, =0.6.0, =0.5.0, =0.8.7 and more Source cves: CVE-2026-41840 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17253520...
africa.absa:inception-application (>=1.0.0 <=1.2.0), africa.absa:inception-test (>=1.0.0 <=1.2.0) +2168 more potentially affected by CVE-2026-41843 via org.springframework:spring-webflux (>=5.3.0 <=5.3.9)
org.springframework:spring-webflux MAVEN version =5.3.0, =1.0.0, =1.0.0, =j8.2.4.0, =v0.3.12, =v0.3.10, =v0.3.12, =4.1.27, =4.1.36, =1.3, =1.0, =1.0.4.R, =1.0.0, =1.0.3 and more Source cves: CVE-2026-41843 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254115...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +2678 more potentially affected by CVE-2026-41843 via org.springframework:spring-webflux (>=6.1.0 <=6.2.18)
org.springframework:spring-webflux MAVEN version =6.1.0, =0.1.0, =0.1.0, =0.2.0, =0.1.1, =0.1.1, =0.0.4, =0.1.0, =0.6.0, =0.6.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.6 and more Source cves: CVE-2026-41843 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254115...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +2678 more potentially affected by CVE-2026-41841 via org.springframework:spring-webflux (>=6.1.0 <=6.2.18)
org.springframework:spring-webflux MAVEN version =6.1.0, =0.1.0, =0.1.0, =0.2.0, =0.1.1, =0.1.1, =0.0.4, =0.1.0, =0.6.0, =0.6.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.6 and more Source cves: CVE-2026-41841 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254528...
ai.ancf.lmos-router:lmos-router-llm-in-spring-cloud-gateway-demo (>=0.2.0 <=0.28.0), ai.ancf.lmos:lmos-operator (>=0.0.4 <=0.6.0) +9046 more potentially affected by CVE-2026-41841 via org.springframework:spring-webmvc (>=6.1.0 <=6.2.18)
org.springframework:spring-webmvc MAVEN version =6.1.0, =0.2.0, =0.0.4, =0.5.0, =0.6.0, =0.5.0, =0.7.0, =0.7.0, =0.5.0, =0.7.5, =0.8.3, =0.7.0, =0.5.0, =0.5.0, =0.8.7 and more Source cves: CVE-2026-41841 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254527...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +7897 more potentially affected by CVE-2026-41852 via org.springframework:spring-expression (>=7.0.0-M1 <=7.0.7)
org.springframework:spring-expression MAVEN version =7.0.0-M1, =0.1.0, =0.1.0, =4.5.0, =4.7.11, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.3.0, =4.5.0, =4.5.0, =4.5.0, =4.7.0, =4.5.0, =4.6.0 and more Source cves: CVE-2026-41852 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17253570...
africa.absa:inception-api (>=1.0.0 <=1.2.0), africa.absa:inception-application (>=1.0.0 <=1.2.0) +28590 more potentially affected by CVE-2026-41849 via org.springframework:spring-expression (>=5.3.0 <=5.3.9)
org.springframework:spring-expression MAVEN version =5.3.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.2.0 and more Source cves: CVE-2026-41849 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17260840...
africa.absa:inception-api (>=1.0.0 <=1.2.0), africa.absa:inception-application (>=1.0.0 <=1.2.0) +28590 more potentially affected by CVE-2026-41852 via org.springframework:spring-expression (>=5.3.0 <=5.3.9)
org.springframework:spring-expression MAVEN version =5.3.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.2.0 and more Source cves: CVE-2026-41852 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17253570...
africa.absa:inception-api (>=1.0.0 <=1.2.0), africa.absa:inception-application (>=1.0.0 <=1.2.0) +16935 more potentially affected by CVE-2026-41840 via org.springframework:spring-web (>=5.3.0 <=5.3.9)
org.springframework:spring-web MAVEN version =5.3.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =4.4.0.2, =4.6.0.0 - ai.apiverse:apipulse =1.0.1 and more Source cves: CVE-2026-41840 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17253520...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +22397 more potentially affected by CVE-2026-41852 via org.springframework:spring-expression (>=6.1.0 <=6.2.18)
org.springframework:spring-expression MAVEN version =6.1.0, =0.1.0, =0.1.0, =0.2.0, =0.1.1, =0.1.1, =0.1.1, =0.1.1, =0.0.4, =0.1.0, =0.1.0, =0.12.1 - ai.astraform:remote-domain-author-kit-java =0.1.0 and more Source cves: CVE-2026-41852 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17253570...
africa.absa:inception-application (>=1.0.0 <=1.2.0), ai.ancf.lmos-router:benchmarks (>=0.2.0 <=0.28.0) +5605 more potentially affected by CVE-2026-41715 via io.projectreactor.netty:reactor-netty-http (>=1.0.0 <=1.2.17)
io.projectreactor.netty:reactor-netty-http MAVEN version =1.0.0, =1.0.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.1.1, =0.1.1, =0.1.1, =0.0.4, =0.6.0 - ai.ancf.lmos:lmos-router-hybrid =0.1.0 - ai.ancf.lmos:lmos-router-hybrid-spring-boot-starter =0.1.0 - ai.ancf.lmos:lmos-router-llm =0.1...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +4269 more potentially affected by CVE-2026-41854 via org.springframework:spring-web (>=7.0.0-M1 <=7.0.7)
org.springframework:spring-web MAVEN version =7.0.0-M1, =0.1.0, =0.1.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =2.0.0, =2.0.0, =0.1.0, =0.1.1, =4.7.0, =0.2.0, =0.5.0, =0.10.2 and more Source cves: CVE-2026-41854 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254521...
ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +8020 more potentially affected by CVE-2026-41854 via org.springframework:spring-web (>=6.2.0 <=6.2.18)
org.springframework:spring-web MAVEN version =6.2.0, =0.1.0, =0.1.0, =0.114.0, =0.114.0, =0.5.0, =0.8.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.6 and more Source cves: CVE-2026-41854 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17254521...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +8632 more potentially affected by CVE-2026-41851 via org.springframework:spring-core (>=7.0.0-M1 <=7.0.7)
org.springframework:spring-core MAVEN version =7.0.0-M1, =0.1.0, =0.1.0, =4.5.0, =4.7.11, =4.5.0, =4.5.0, =4.3.0, =4.3.0, =4.3.0, =4.7.0, =4.7.4, =4.7.4, =4.3.0, =4.7.0, =4.5.0, =4.6.0 and more Source cves: CVE-2026-41851 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-17255206...
africa.absa:inception-api (>=1.0.0 <=1.2.0), africa.absa:inception-codes-api (>=1.0.0 <=1.2.0) +11591 more potentially affected by CVE-2026-41843 via org.springframework:spring-webmvc (>=5.3.0 <=5.3.9)
org.springframework:spring-webmvc MAVEN version =5.3.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =4.4.0.2, =1.4.2, =1.6.6, =1.6.6.1 - ai.platon:distributed-lock-example =1.4.2 and more Source cves: CVE-2026-41843 Source advisory: SNYK:JAVA-ORGSPRINGFRAMEWORK-1725411...
ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +712 more potentially affected by CVE-2026-41715 via io.projectreactor.netty:reactor-netty-http (>=1.3.0-M1 <=1.3.5)
io.projectreactor.netty:reactor-netty-http MAVEN version =1.3.0-M1, =0.1.0, =0.1.0, =4.5.0, =4.5.0, =4.5.0, =4.5.0, =0.0.1-alfa, =0.0.1-demo, =2.0.8, =6.0.1, =4.0.0.0-M2, =1.0.5, =5.0-Draft.4, =5.0-Draft.5 and more Source cves: CVE-2026-41715 Source advisory: SNYK:JAVA-IOPROJECTREACTORNETTY-17260...