26517 matches found
@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-33576 via openclaw (>=2026.3.22 <=2026.3.24)
openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-33576 Source advisory: SNYK:JS-OPENCLAW-15857168...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +9 more potentially affected by CVE-2026-33581 via openclaw (>=2026.3.22 <=2026.3.23)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-33581 Source advisory: SNYK:JS-OPENCLAW-15857166...
@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-34503 via openclaw (>=2026.3.22 <=2026.3.24)
openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-34503 Source advisory: SNYK:JS-OPENCLAW-15857163...
@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-34504 via openclaw (>=2026.3.22 <=2026.3.24)
openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-34504 Source advisory: SNYK:JS-OPENCLAW-15857162...
a2 (>=0.1.0 <=0.3.17), abadpour (>=6.13.1 <=7.24.1) +952 more potentially affected by CVE-2026-0596 via mlflow (>=0.8.2 <=3.8.1)
mlflow PYPI version =0.8.2, =0.1.0, =6.13.1, =9.273.1, =1.1.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.0.5, =1.0.0, =0.1.0, =1.1.1 - ai-helpers-pytorch-utils =0.1.0a1 - ailine-core =0.5.5 and more Source cves: CVE-2026-0596 Source advisory: OSV:GHSA-RVHJ-8CHJ-8V3C...
abadpour (>=6.13.1 <=7.24.1), abcli (>=9.273.1 <=9.572.1) +702 more potentially affected by CVE-2026-0596 via mlflow (>=3.0.0rc2 <=3.9.0)
mlflow PYPI version =3.0.0rc2, =6.13.1, =9.273.1, =2.0.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.1.0, =1.0.0, =1.1.0, =0.1.0, =1.0.0, =1.0.1 and more Source cves: CVE-2026-0596 Source advisory: SNYK:PYTHON-MLFLOW-15907602...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +9 more potentially affected by CVE-2026-33581 via openclaw (>=2026.3.22 <=2026.3.23)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-33581 Source advisory: SNYK:JS-OPENCLAW-15865759...
abadpour (>=6.13.1 <=7.24.1), abcli (>=9.273.1 <=9.572.1) +766 more potentially affected by CVE-2026-0596 via mlflow-skinny (>=3.0.0 <=3.9.0)
mlflow-skinny PYPI version =3.0.0, =6.13.1, =9.273.1, =2.0.0, =0.1.0, =0.1.0, =0.4.4, =0.3.0, =0.1.0, =1.0.0, =1.1.0, =0.1.0, =1.0.0, =1.0.1 and more Source cves: CVE-2026-0596 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-15918170...
0lever-utils (>=0.0.2 <=0.0.7), 0x-web3 (=5.0.0a5) +6223 more potentially affected by CVE-2026-34073 via cryptography (>=0.6.1 <=46.0.5)
cryptography PYPI version =0.6.1, =0.0.2, =2.3.0, =0.1.0, =0.5.0rc5, =0.9.2, =0.4.24, =0.1.0, =0.1.3, =0.0.1, =0.1.5, =0.1.1, =1.0.0, =1.0.0, =1.0.3 and more Source cves: CVE-2026-34073 Source advisory: OSV:PYSEC-2026-35...
0xpay-cc-sdk (>=0.0.8 <=0.1.0), 1inch-agent-kit (=1.0.53) +6115 more potentially affected by unknown CVE via axios (>=1.0.0-alpha.1 <=1.14.0)
axios NPM version =1.0.0-alpha.1, =0.0.8, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2-beta.0, =8.0.5, =6.1.0, =0.0.1-alpha.3, =0.1.6-alpha.11, =1.0.3-rc.0, =2.1.0 - @1tokenfe/hd-ble-sdk =1.1.15 - @1tokenfe/hd-common-connect-sdk =1.1.15 and more Source cves: unknown CVE Source advisory:...
airflow-aggua-plugin (>=1.0.7 <=1.0.8), airflow-clickhouse-plugin (>=0.5.1 <=0.5.7.post1) +108 more potentially affected by CVE-2026-32794 via apache-airflow (>=1.10.1 <=1.10.7)
apache-airflow PYPI version =1.10.1, =1.0.7, =0.5.1, =0.1.0, =0.1.1, =0.0.7, =1.0.1, =0.0.1, =0.1.6, =0.0.2, =1.0.0, =1.2.1, =2020.5.20rc1, =2021.2.5, =2021.3.13rc1 and more Source cves: CVE-2026-32794 Source advisory: OSV:GHSA-WRPJ-755P-X363...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +11 more potentially affected by CVE-2026-35620 via openclaw (>=0.0.1 <=2026.3.24-beta.2)
openclaw NPM version =0.0.1, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =3.3.2, =3.3.7 Source cves: CVE-2026-35620 Source advisory: OSV:GHSA-39MP-545Q-W789...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +9 more potentially affected by unknown CVE via openclaw (>=2026.3.22 <=2026.3.23)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: unknown CVE Source advisory: SNYK:JS-OPENCLAW-15857122...
@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-35653 via openclaw (>=2026.3.22 <=2026.3.24)
openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35653 Source advisory: SNYK:JS-OPENCLAW-15857133...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +11 more potentially affected by CVE-2026-35653 via openclaw (>=0.0.1 <=2026.3.24-beta.2)
openclaw NPM version =0.0.1, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =3.3.2, =3.3.7 Source cves: CVE-2026-35653 Source advisory: OSV:GHSA-XP9R-PRPG-373R...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +9 more potentially affected by CVE-2026-35620 via openclaw (>=2026.3.22 <=2026.3.23)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35620 Source advisory: SNYK:JS-OPENCLAW-15857061...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +11 more potentially affected by unknown CVE via openclaw (>=0.0.1 <=2026.3.24-beta.2)
openclaw NPM version =0.0.1, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =3.3.2, =3.3.7 Source cves: unknown CVE Source advisory: OSV:GHSA-VQVG-86CC-CG83...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +9 more potentially affected by CVE-2026-35621 via openclaw (>=2026.3.22 <=2026.3.23)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35621 Source advisory: SNYK:JS-OPENCLAW-15857060...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +10 more potentially affected by CVE-2026-35641 via openclaw (>=2026.3.22 <=2026.3.24-beta.2)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35641 Source advisory: SNYK:JS-OPENCLAW-15857116...
@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-35619 via openclaw (>=2026.3.22 <=2026.3.24)
openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35619 Source advisory: SNYK:JS-OPENCLAW-15857115...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +11 more potentially affected by CVE-2026-35665 via openclaw (>=0.0.1 <=2026.3.24-beta.2)
openclaw NPM version =0.0.1, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =3.3.2, =3.3.7 Source cves: CVE-2026-35665 Source advisory: OSV:GHSA-W6M8-CQVJ-PG5V...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +11 more potentially affected by CVE-2026-35668 via openclaw (>=0.0.1 <=2026.3.24-beta.2)
openclaw NPM version =0.0.1, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =3.3.2, =3.3.7 Source cves: CVE-2026-35668 Source advisory: OSV:GHSA-HR5V-J9H9-XJHG...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +9 more potentially affected by CVE-2026-35668 via openclaw (>=2026.3.22 <=2026.3.23)
openclaw NPM version =2026.3.22, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35668 Source advisory: SNYK:JS-OPENCLAW-15857062...
@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (=0.8.3-beta.1) +11 more potentially affected by CVE-2026-35667 via openclaw (>=2026.3.22 <=2026.3.24)
openclaw NPM version =2026.3.22, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =0.1.5 Source cves: CVE-2026-35667 Source advisory: SNYK:JS-OPENCLAW-15857087...
@agentholdings/agent-passport (=0.1.0), @flomesh/ztm-chat (>=2026.3.25 <=2026.3.26) +11 more potentially affected by CVE-2026-35667 via openclaw (>=0.0.1 <=2026.3.24-beta.2)
openclaw NPM version =0.0.1, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.1.0, =3.3.2, =3.3.7 Source cves: CVE-2026-35667 Source advisory: OSV:GHSA-3298-56P6-RPW2...
@openinc/parse-server-opendash (>=4.0.0 <=4.0.10) potentially affected by CVE-2026-34373 via parse-server (>=9.6.0-alpha.37 <=9.6.1)
parse-server NPM version =9.6.0-alpha.37, =4.0.0, =4.0.10 Source cves: CVE-2026-34373 Source advisory: OSV:GHSA-Q3P6-G7C4-829C...
@openinc/parse-server-opendash (>=4.0.0 <=4.0.10) potentially affected by CVE-2026-34373 via parse-server (>=9.6.0-alpha.37 <=9.6.1)
parse-server NPM version =9.6.0-alpha.37, =4.0.0, =4.0.10 Source cves: CVE-2026-34373 Source advisory: SNYK:JS-PARSESERVER-15855397...
@kontaa/subgraph (>=1.0.1 <=1.2.3), @kontaa/utils (>=1.2.1 <=1.2.3) +6 more potentially affected by CVE-2026-34373 via parse-server (>=5.6.0 <=7.5.4)
parse-server NPM version =5.6.0, =1.0.1, =1.2.1, =2.4.46, =1.0.0, =1.0.1, =1.0.0, =1.0.0, =1.0.1 - servable-publishable =1.1.0 Source cves: CVE-2026-34373 Source advisory: SNYK:JS-PARSESERVER-15855397...
@kontaa/subgraph (>=1.0.1 <=1.2.3), @kontaa/utils (>=1.2.1 <=1.2.3) +6 more potentially affected by CVE-2026-34373 via parse-server (>=5.6.0 <=7.5.4)
parse-server NPM version =5.6.0, =1.0.1, =1.2.1, =2.4.46, =1.0.0, =1.0.1, =1.0.0, =1.0.0, =1.0.1 - servable-publishable =1.1.0 Source cves: CVE-2026-34373 Source advisory: OSV:GHSA-Q3P6-G7C4-829C...
@openinc/parse-server-opendash (>=4.0.0 <=4.0.10) potentially affected by CVE-2026-34363 via parse-server (>=9.6.0-alpha.37 <=9.6.1)
parse-server NPM version =9.6.0-alpha.37, =4.0.0, =4.0.10 Source cves: CVE-2026-34363 Source advisory: SNYK:JS-PARSESERVER-15855398...
@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @kontaa/subgraph (>=1.0.1 <=1.2.3) +27 more potentially affected by CVE-2026-34363 via parse-server (>=2.0.8 <=7.5.4)
parse-server NPM version =2.0.8, =1.0.5, =1.0.1, =1.2.1, =2.4.46, =2.4.8, =1.0.0, =1.0.0, =1.0.1, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.29 - parse-cli-server2 =0.0.30 and more Source cves: CVE-2026-34363 Source advisory: OSV:GHSA-M983-V2FF-WQ65...
@openinc/parse-server-opendash (>=4.0.0 <=4.0.10) potentially affected by CVE-2026-34363 via parse-server (>=9.6.0-alpha.37 <=9.6.1)
parse-server NPM version =9.6.0-alpha.37, =4.0.0, =4.0.10 Source cves: CVE-2026-34363 Source advisory: OSV:GHSA-M983-V2FF-WQ65...
aiqtoolkit-crewai (>=1.2.0rc5 <=1.4.0b2), crewai-geolocate (=0.1.0) +2 more potentially affected by CVE-2026-2286 via crewai (>=1.0.0 <=1.13.0rc1.dev20260331)
crewai PYPI version =1.0.0, =1.2.0rc5, =1.0.0, =1.7.0, =1.9.0a20260610 Source cves: CVE-2026-2286 Source advisory: SNYK:PYTHON-CREWAI-15922659...
crewai-geolocate (=0.1.0) potentially affected by CVE-2026-2286 via crewai-tools (=1.11.0)
crewai-tools PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on crewai-tools and may be impacted: - crewai-geolocate =0.1.0 Source cves: CVE-2026-2286 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922658...
crewai-geolocate (=0.1.0) potentially affected by CVE-2026-2275 via crewai-tools (=1.11.0)
crewai-tools PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on crewai-tools and may be impacted: - crewai-geolocate =0.1.0 Source cves: CVE-2026-2275 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922544...
crewai-geolocate (=0.1.0) potentially affected by CVE-2026-2287 via crewai-tools (=1.11.0)
crewai-tools PYPI version =1.11.0 is affected by a known vulnerability. The following packages have a transitive dependency on crewai-tools and may be impacted: - crewai-geolocate =0.1.0 Source cves: CVE-2026-2287 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922651...
agentic-ai-vass-tools (>=0.1.0 <=0.4.0), agenticos (>=0.0.1 <=0.0.3.155020) +24 more potentially affected by CVE-2026-2285 via crewai-tools (>=0.12.1 <=1.11.0)
crewai-tools PYPI version =0.12.1, =0.1.0, =0.0.1, =0.2.0, =0.1.7, =0.2.6, =0.1.0, =0.5.42, =0.74.0, =0.0.6, =0.0.2, =0.1.0.dev7, =0.1.1.dev6 and more Source cves: CVE-2026-2285 Source advisory: SNYK:PYTHON-CREWAITOOLS-15922426...
ai.telosforge:kimaira-starter-agentic (>=1.2.4 <=1.2.6), ai.telosforge:kimaira-starter-agentic-factory (>=1.2.4 <=1.2.6) +504 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (>=0.13.0 <=0.18.2)
io.modelcontextprotocol.sdk:mcp-core MAVEN version =0.13.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =0.0.1, =0.1.0, =0.3.0, =2.0.0-beta.7, =1.1.0.0, =1.1.0.0, =2.0.0-M1.1 and more Source cves: CVE-2026-34237 Source advisory: OSV:GHSA-HV2W-8MJJ-JW22...
com.agentsflex:agents-flex-bom (>=2.1.1 <=2.1.7), com.agentsflex:agents-flex-mcp (>=2.0.0 <=2.1.7) +28 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (=1.0.0)
io.modelcontextprotocol.sdk:mcp-core MAVEN version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.modelcontextprotocol.sdk:mcp-core and may be impacted: - com.agentsflex:agents-flex-bom =2.1.1, =2.0.0, =2.1.1, =2.0.4, =0.1.1, =0.1.1,...
ai.agentican:agentican-framework-core (>=0.1.0-alpha.1 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +152 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (=1.1.0)
io.modelcontextprotocol.sdk:mcp-core MAVEN version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.modelcontextprotocol.sdk:mcp-core and may be impacted: - ai.agentican:agentican-framework-core =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1,...
ai.agentican:agentican-framework-core (>=0.1.0-alpha.1 <=0.1.0-alpha.4), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.4) +152 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (=1.1.0)
io.modelcontextprotocol.sdk:mcp-core MAVEN version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.modelcontextprotocol.sdk:mcp-core and may be impacted: - ai.agentican:agentican-framework-core =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1,...
com.agentsflex:agents-flex-bom (>=2.1.1 <=2.1.7), com.agentsflex:agents-flex-mcp (>=2.0.0 <=2.1.7) +28 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (>=1.0.0-RC3 <=1.0.0)
io.modelcontextprotocol.sdk:mcp-core MAVEN version =1.0.0-RC3, =2.1.1, =2.0.0, =2.1.1, =2.0.4, =0.1.1, =0.1.1, =0.158.v8e18e64dd93c, =0.174.v2747878aeedb - io.micronaut.mcp:micronaut-mcp-client-java-sdk =1.0.0-M2 - io.micronaut.mcp:micronaut-mcp-server-java-sdk =1.0.0-M2 -...
health.matchbox:matchbox-engine (>=4.0.19 <=4.1.0), org.hl7.fhir.publisher:org.hl7.fhir.publisher (>=2.1.0 <=2.2.3) +2 more potentially affected by CVE-2026-34359 +1 more via ca.uhn.hapi.fhir:org.hl7.fhir.validation (>=6.8.0 <=6.9.3)
ca.uhn.hapi.fhir:org.hl7.fhir.validation MAVEN version =6.8.0, =4.0.19, =2.1.0, =2.1.0, =2.1.0, =2.2.3 Source cves: CVE-2026-34359, CVE-2026-34361 Source advisory: SNYK:JAVA-CAUHNHAPIFHIR-15855464...
ca.uhn.hapi.fhir:hapi-fhir-cli-api (>=4.0.0 <=8.8.1), ca.uhn.hapi.fhir:hapi-fhir-cli-app (>=5.6.5 <=7.4.5) +222 more potentially affected by CVE-2026-34361 via ca.uhn.hapi.fhir:org.hl7.fhir.validation (>=1.0.0 <=6.9.3)
ca.uhn.hapi.fhir:org.hl7.fhir.validation MAVEN version =1.0.0, =4.0.0, =5.6.5, =4.1.0, =4.1.0, =4.0.0, =5.0.0, =4.0.0, =5.3.0, =6.2.0, =5.1.0, =6.8.0, =6.4.0, =5.3.0, =4.0.0, =4.0.0, =8.8.1 and more Source cves: CVE-2026-34361 Source advisory: OSV:GHSA-VR79-8M62-WH98...
ca.uhn.hapi.fhir:org.hl7.fhir.convertors (>=6.8.0 <=6.9.3), ca.uhn.hapi.fhir:org.hl7.fhir.dstu2 (>=6.8.0 <=6.9.3) +12 more potentially affected by CVE-2026-34359 +1 more via ca.uhn.hapi.fhir:org.hl7.fhir.utilities (>=6.8.0 <=6.9.3)
ca.uhn.hapi.fhir:org.hl7.fhir.utilities MAVEN version =6.8.0, =6.8.0, =6.8.0, =6.8.0, =6.8.0, =6.8.0, =6.8.0, =6.8.0, =6.8.0, =6.8.0, =4.0.19, =4.14.6, =2.1.0, =2.1.0, =2.1.0, =2.2.3 Source cves: CVE-2026-34359, CVE-2026-34361 Source advisory: SNYK:JAVA-CAUHNHAPIFHIR-15855298...
io.connectedhealth-idaas:idaas-eventbuilder (=2.3.0) potentially affected by CVE-2026-34360 via ca.uhn.hapi.fhir:org.hl7.fhir.core (=5.1.7)
ca.uhn.hapi.fhir:org.hl7.fhir.core MAVEN version =5.1.7 is affected by a known vulnerability. The following packages have a transitive dependency on ca.uhn.hapi.fhir:org.hl7.fhir.core and may be impacted: - io.connectedhealth-idaas:idaas-eventbuilder =2.3.0 Source cves: CVE-2026-34360 Source...
au.csiro.pathling:encoders (>=6.2.2 <=9.5.0), au.csiro.pathling:fhir-server (>=6.2.2 <=7.2.0) +244 more potentially affected by CVE-2026-34360 via ca.uhn.hapi.fhir:org.hl7.fhir.utilities (>=6.0.0 <=6.9.3)
ca.uhn.hapi.fhir:org.hl7.fhir.utilities MAVEN version =6.0.0, =6.2.2, =6.2.2, =6.2.2, =6.2.2, =6.2.2, =6.2.2, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =6.6.0, =8.8.1 and more Source cves: CVE-2026-34360 Source advisory: SNYK:JAVA-CAUHNHAPIFHIR-15855324...
jfk-django-core (=1.6.0) potentially affected by CVE-2026-34231 via slippers (=0.6.2)
slippers PYPI version =0.6.2 is affected by a known vulnerability. The following packages have a transitive dependency on slippers and may be impacted: - jfk-django-core =1.6.0 Source cves: CVE-2026-34231 Source advisory: OSV:GHSA-W7RV-GFP4-J9J3...
jfk-django-core (=1.6.0) potentially affected by CVE-2026-34231 via slippers (=0.6.2)
slippers PYPI version =0.6.2 is affected by a known vulnerability. The following packages have a transitive dependency on slippers and may be impacted: - jfk-django-core =1.6.0 Source cves: CVE-2026-34231 Source advisory: SNYK:PYTHON-SLIPPERS-15857196...
io.connectedhealth-idaas:idaas-eventbuilder (=2.3.0) potentially affected by CVE-2026-34359 via ca.uhn.hapi.fhir:org.hl7.fhir.core (=5.1.7)
ca.uhn.hapi.fhir:org.hl7.fhir.core MAVEN version =5.1.7 is affected by a known vulnerability. The following packages have a transitive dependency on ca.uhn.hapi.fhir:org.hl7.fhir.core and may be impacted: - io.connectedhealth-idaas:idaas-eventbuilder =2.3.0 Source cves: CVE-2026-34359 Source...