Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
CLEANSTART-2026-PO27799
  • CleanStart/keycloak
 Security fixes for CVE-2017-12158, CVE-2017-12159, CVE-2025-59250, CVE-2026-41417, CVE-2026-42198, CVE-2026-42577, CVE-2026-42578, CVE-2026-42579, CVE-2026-42580, CVE-2026-42581, CVE-2026-42583, CVE-2026-42584, CVE-2026-42585, CVE-2026-42587, CVE-2026-5588, CVE-2026-5598, ghsa-38f8-5428-x5cv, ghsa-3p8m-j85q-pgmj, ghsa-45p5-v273-3qqr, ghsa-45q3-82m4-75jr, ghsa-4cx2-fc23-5wg6, ghsa-57rv-r2g8-2cj3, ghsa-5rfx-cp42-p624, ghsa-72hv-8253-57qq, ghsa-84h7-rjj3-6jx4, ghsa-9342-92gg-6v29, ghsa-98qh-xjc8-98pq, ghsa-c3fc-8qff-9hwx, ghsa-cbdj-484d-3x9q, ghsa-cm33-6792-r9fm, ghsa-fghv-69vj-qj49, ghsa-h5fg-jpgr-rv9c, ghsa-hq9p-pm7w-8p54, ghsa-j288-q9x7-2f5v, ghsa-m4cv-j2px-7723, ghsa-mj4r-2hfc-f8p6, ghsa-p93r-85wp-75v3, ghsa-pwqr-wmgm-9rr8, ghsa-rc95-pcm8-65v9, ghsa-rwm7-x88c-3g2p, ghsa-v8h7-rr48-vmmv, ghsa-w9fj-cfpg-grvv, ghsa-wg6q-6289-32hp, ghsa-xxqh-mfjm-7mv9 applied in versions: 26.1.4-r1, 26.5.0-r2, 26.5.6-r3, 26.5.7-r0 18 May
  • Fix available
CLEANSTART-2026-VJ37814
  • CleanStart/keycloak
 Security fixes for CVE-2025-59250, CVE-2026-1002, CVE-2026-33870, CVE-2026-33871, CVE-2026-39852, CVE-2026-41417, CVE-2026-42198, CVE-2026-42577, CVE-2026-42578, CVE-2026-42579, CVE-2026-42580, CVE-2026-42581, CVE-2026-42583, CVE-2026-42584, CVE-2026-42585, CVE-2026-42587, CVE-2026-5588, CVE-2026-5598, ghsa-38f8-5428-x5cv, ghsa-3p8m-j85q-pgmj, ghsa-45p5-v273-3qqr, ghsa-45q3-82m4-75jr, ghsa-4cx2-fc23-5wg6, ghsa-57rv-r2g8-2cj3, ghsa-9342-92gg-6v29, ghsa-98qh-xjc8-98pq, ghsa-c3fc-8qff-9hwx, ghsa-cm33-6792-r9fm, ghsa-cphf-4846-3xx9, ghsa-fghv-69vj-qj49, ghsa-h5fg-jpgr-rv9c, ghsa-hq9p-pm7w-8p54, ghsa-j288-q9x7-2f5v, ghsa-m4cv-j2px-7723, ghsa-mj4r-2hfc-f8p6, ghsa-p93r-85wp-75v3, ghsa-pwqr-wmgm-9rr8, ghsa-rc95-pcm8-65v9, ghsa-rwm7-x88c-3g2p, ghsa-v8h7-rr48-vmmv, ghsa-w9fj-cfpg-grvv, ghsa-wg6q-6289-32hp, ghsa-xxqh-mfjm-7mv9 applied in versions: 26.1.4-r1, 26.4.11-r0, 26.4.11-r2 18 May
  • Fix available
CLEANSTART-2026-GX01236
  • CleanStart/keycloak
 Security fixes for CVE-2017-12158, CVE-2017-12159, CVE-2026-41417, CVE-2026-42198, CVE-2026-42577, CVE-2026-42578, CVE-2026-42579, CVE-2026-42580, CVE-2026-42581, CVE-2026-42583, CVE-2026-42584, CVE-2026-42585, CVE-2026-42587, CVE-2026-5588, ghsa-3p8m-j85q-pgmj, ghsa-45p5-v273-3qqr, ghsa-4cx2-fc23-5wg6, ghsa-5rfx-cp42-p624, ghsa-72hv-8253-57qq, ghsa-84h7-rjj3-6jx4, ghsa-9342-92gg-6v29, ghsa-98qh-xjc8-98pq, ghsa-c3fc-8qff-9hwx, ghsa-cbdj-484d-3x9q, ghsa-fghv-69vj-qj49, ghsa-h5fg-jpgr-rv9c, ghsa-hq9p-pm7w-8p54, ghsa-j288-q9x7-2f5v, ghsa-pwqr-wmgm-9rr8, ghsa-v8h7-rr48-vmmv, ghsa-w9fj-cfpg-grvv, ghsa-wg6q-6289-32hp applied in versions: 26.1.4-r1, 26.5.0-r0, 26.5.0-r1, 26.5.0-r2, 26.5.5-r0, 26.5.5-r1, 26.5.6-r3 18 May
  • Fix available
CLEANSTART-2026-QI14017
  • CleanStart/keycloak
 Vert 15 Apr
  • Fix available
  • Severity - 9.8 (Critical)
CLEANSTART-2026-FA60324
  • CleanStart/keycloak
 It was found that the cookie used for CSRF prevention in Keycloak was not unique to each session 15 Apr
  • Fix available
  • Severity - 9.8 (Critical)
MINI-5x3w-gv5r-ggw3
  • MinimOS/apicurio-registry
  • MinimOS/apicurio-registry-compat
  • MinimOS/apicurio-registry-nginx-config
  • MinimOS/apicurio-registry-ui
 See record for full details 14 Apr
  • Fix available
CLEANSTART-2026-KC06018
  • CleanStart/keycloak
 Security fixes for CVE-2017-12158, CVE-2017-12159, ghsa-3p8m-j85q-pgmj, ghsa-45p5-v273-3qqr, ghsa-4cx2-fc23-5wg6, ghsa-5rfx-cp42-p624, ghsa-72hv-8253-57qq, ghsa-84h7-rjj3-6jx4, ghsa-9342-92gg-6v29, ghsa-cbdj-484d-3x9q, ghsa-fghv-69vj-qj49, ghsa-h5fg-jpgr-rv9c, ghsa-hq9p-pm7w-8p54, ghsa-j288-q9x7-2f5v, ghsa-pwqr-wmgm-9rr8, ghsa-w9fj-cfpg-grvv applied in versions: 26.1.4-r1, 26.5.0-r0, 26.5.0-r1, 26.5.0-r2, 26.5.6-r3 06 Apr
  • Fix available
CLEANSTART-2026-TA42758
  • CleanStart/keycloak
 Security fixes for ghsa-3p8m-j85q-pgmj, ghsa-45p5-v273-3qqr, ghsa-4cx2-fc23-5wg6, ghsa-9342-92gg-6v29, ghsa-fghv-69vj-qj49, ghsa-h5fg-jpgr-rv9c, ghsa-hq9p-pm7w-8p54, ghsa-j288-q9x7-2f5v applied in versions: 26.1.4-r1 01 Apr
  • Fix available
MINI-jf59-v72v-x246
  • MinimOS/kafka-strimzi-compat-0.50
  • MinimOS/kafka_exporter-strimzi-compat-0.50
  • MinimOS/prometheus-jmx-exporter-strimzi-compat-0.50
  • MinimOS/strimzi-kafka-operator-0.50
  • MinimOS/strimzi-kafka-operator-0.50-cluster-operator
  • ... 8 more
 See record for full details 16 Mar
  • No fix available
CLEANSTART-2026-SG80587
  • CleanStart/keycloak
 It was found that the cookie used for CSRF prevention in Keycloak was not unique to each session 30 Jan
  • Fix available
  • Severity - 9.8 (Critical)
MINI-wfcf-mhc3-vxrx
  • MinimOS/kafka-strimzi-compat-0.45
  • MinimOS/kafka_exporter-strimzi-compat-0.45
  • MinimOS/strimzi-kafka-operator-0.45
  • MinimOS/strimzi-kafka-operator-0.45-cluster-operator
  • MinimOS/strimzi-kafka-operator-0.45-kafka-agent
  • ... 8 more
 See record for full details 12 Jan
  • Fix available
MINI-fwfv-365v-89gm
  • MinimOS/keycloak-fips
  • MinimOS/keycloak-fips-advanced-compat
  • MinimOS/keycloak-fips-doc
 See record for full details 18 Nov 2025
  • Fix available
MINI-gwwc-hx57-h6p3
  • MinimOS/kafka-strimzi-compat
  • MinimOS/kafka_exporter-strimzi-compat
  • MinimOS/prometheus-jmx-exporter-strimzi-compat
  • MinimOS/strimzi-kafka-operator
  • MinimOS/strimzi-kafka-operator-cluster-operator
  • ... 8 more
 See record for full details 13 Nov 2025
  • Fix available
MINI-gp3g-92jx-7w3j
  • MinimOS/keycloak
  • MinimOS/keycloak-advanced-compat
  • MinimOS/keycloak-doc
 See record for full details 04 Nov 2025
  • Fix available
GHSA-h5fg-jpgr-rv9c
  • Maven/io.vertx:vertx-web
 Vert.x-Web Access Control Flaw in StaticHandler’s Hidden File Protection for Files Under Hidden Directories 22 Oct 2025
  • Fix available
  • Severity - 6.3 (Medium)
CVE-2025-11965
  • github.com/vert-x3/vertx-web
 See record for full details 22 Oct 2025
  • Fix available
  • Severity - 7.5 (High)