Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
GHSA-rcpf-vj53-7h2m
  • Maven/org.springframework:spring-core
  • Maven/org.springframework:spring-core
Denial of Service in org.springframework:spring-core
  • 5.0.0.RELEASE
  • 5.0.1.RELEASE
  • 5.0.2.RELEASE
  • 5.0.3.RELEASE
  • 5.0.4.RELEASE
  • 5.0.5.RELEASE
  • 1.0
  • ...
2022-06-24T20:17:56.170947Z Fix available
GHSA-v596-fwhq-8x48
  • Maven/org.springframework.security:spring-security-core
  • Maven/org.springframework.security:spring-security-core
  • Maven/org.springframework:spring-core
  • Maven/org.springframework:spring-core
  • Maven/org.springframework.security:spring-security-core
Improper Input Validation in org.springframework.security:spring-security-core, org.springframework.security:spring-security-core , and org.springframework:spring-core
  • 4.2.0.RELEASE
  • 4.2.1.RELEASE
  • 4.2.2.RELEASE
  • 4.2.3.RELEASE
  • 5.0.0.RELEASE
  • 4.3.0.RELEASE
  • 4.3.1.RELEASE
  • ...
2022-06-24T20:17:49.952436Z Fix available
GHSA-g8hw-794c-4j9g
  • Maven/org.springframework:spring-core
  • Maven/org.springframework:spring-core
Path Traversal in org.springframework:spring-core
  • 5.0.0.RELEASE
  • 5.0.1.RELEASE
  • 5.0.2.RELEASE
  • 5.0.3.RELEASE
  • 5.0.4.RELEASE
  • 1.0
  • 1.0-rc1
  • ...
2022-06-24T20:17:44.984247Z Fix available
GHSA-3rmv-2pg5-xvqj
  • Maven/org.springframework:spring-core
  • Maven/org.springframework:spring-core
Improperly Implemented Security Check for Standard in org.springframework:spring-core
  • 1.0
  • 1.0-rc1
  • 1.0.1
  • 1.1
  • 1.1-rc1
  • 1.1-rc2
  • 1.1.1
  • ...
2022-06-24T20:17:37.187719Z Fix available
GHSA-4487-x383-qpph
  • Maven/org.springframework:spring-core
  • Maven/org.springframework:spring-core
Possible privilege escalation in org.springframework:spring-core
  • 1.0
  • 1.0-rc1
  • 1.0.1
  • 1.1
  • 1.1-rc1
  • 1.1-rc2
  • 1.1.1
  • ...
2022-06-24T20:17:22.672292Z Fix available
GHSA-77hf-23pq-2g7c
  • Maven/org.apache.nifi.registry:nifi-registry-core
  • Maven/org.apache.nifi:nifi
Code injection in Apache NiFi and NiFi Registry
  • 0.7.0
  • 0.8.0
  • 1.14.0
  • 1.15.0
  • 1.15.1
  • 1.15.2
  • 1.15.3
  • ...
2022-06-24T20:17:19.954347Z Fix available
GHSA-58jx-f5rf-qgqf
  • Maven/org.apache.hadoop:hadoop-yarn-server-common
  • Maven/org.apache.hadoop:hadoop-yarn-server-common
  • Maven/org.apache.hadoop:hadoop-yarn-server-common
User account escalation in Apache Hadoop
  • 2.10.0
  • 2.10.1
  • 2.2.0
  • 2.3.0
  • 2.4.0
  • 2.4.1
  • 2.5.0
  • ...
2022-06-24T20:16:56.609749Z Fix available
GHSA-57qj-79gh-69w8
  • Maven/net.sourceforge.pmd:pmd-core
Improper Restriction of XML External Entity Reference in PMD
  • 5.2.0
  • 5.2.1
  • 5.2.2
  • 5.2.3
  • 5.3.0
  • 5.3.1
  • 5.3.2
  • ...
2022-06-24T15:29:56.062528Z Fix available
GHSA-7fhr-2694-rg79
  • Maven/org.wildfly.security:wildfly-elytron
Session Fixation in WildFly Elytron
  • 1.0.0.Alpha1
  • 1.0.0.Alpha2
  • 1.0.0.Alpha3
  • 1.0.0.CR1
  • 1.0.0.Final
  • 1.0.1.Final
  • 1.0.2.Final
  • ...
2022-06-24T01:47:39.150101Z Fix available
GHSA-gv2w-88hx-8m9r
  • Maven/io.undertow:undertow-core
Improper Authorization in Undertoe
  • 1.0.0.Alpha1
  • 1.0.0.Alpha10
  • 1.0.0.Alpha11
  • 1.0.0.Alpha12
  • 1.0.0.Alpha13
  • 1.0.0.Alpha14
  • 1.0.0.Alpha15
  • ...
2022-06-24T01:47:34.346024Z Fix available
GHSA-63cq-ppq8-cw6g
  • Maven/org.jboss.resteasy:resteasy-client
  • Maven/org.jboss.resteasy:resteasy-client
Improper Input Validation in RESTEasy
  • 4.0.0.Final
  • 4.1.0.Final
  • 4.1.1.Final
  • 4.2.0.Final
  • 4.3.0.Final
  • 4.3.1.Final
  • 4.4.0.CR1
  • ...
2022-06-24T01:47:29.258540Z Fix available
GHSA-w4jq-qh47-hvjq
  • Maven/xerces:xercesImpl
Improper Input Validation in Xerces
  • 2.0.0
  • 2.0.2
  • 2.10.0
  • 2.11.0
  • 2.2.1
  • 2.3.0
  • 2.4.0
  • ...
2022-06-24T01:47:27.921035Z Fix available
GHSA-qgrq-cx4c-2rmm
  • Maven/org.wildfly.security:wildfly-elytron
Incorrect Authorization in WildFly Elytron
  • 1.0.0.Alpha1
  • 1.0.0.Alpha2
  • 1.0.0.Alpha3
  • 1.0.0.CR1
  • 1.0.0.Final
  • 1.0.1.Final
  • 1.0.2.Final
  • ...
2022-06-24T01:47:18.169966Z Fix available
GHSA-q9g8-9hpp-xc82
  • Maven/org.apache.activemq:artemis-commons
nsufficiently Protected Credentials in ActiveMQ Artemis
  • 2.10.0
  • 2.10.1
  • 2.11.0
  • 2.12.0
  • 2.7.0
  • 2.8.0
  • 2.8.1
  • ...
2022-06-24T01:47:17.662753Z Fix available
GHSA-2w73-fqqj-c92p
  • Maven/io.undertow:undertow-core
Improper Input Validation in Undertoe
  • 1.0.0.Alpha1
  • 1.0.0.Alpha10
  • 1.0.0.Alpha11
  • 1.0.0.Alpha12
  • 1.0.0.Alpha13
  • 1.0.0.Alpha14
  • 1.0.0.Alpha15
  • ...
2022-06-24T01:47:06.865793Z Fix available
GHSA-qvmf-36h5-3f5v
  • Maven/org.jenkins-ci.plugins:script-security
Improper Input Validation in Jenkins Script Security Plugin
  • 1.0
  • 1.0-beta-1
  • 1.0-beta-2
  • 1.0-beta-3
  • 1.0-beta-4
  • 1.0-beta-5
  • 1.0-beta-6
  • ...
2022-06-24T01:33:40.853544Z Fix available