| libc-bin |
CVE-2025-4802 |
MEDIUM |
2.31-0ubuntu9.17 |
2.31-0ubuntu9.18 |
http://www.openwall.com/lists/oss-security/2025/05/16/7
http://www.openwall.com/lists/oss-security/2025/05/17/2
https://access.redhat.com/errata/RHSA-2025:8686
https://access.redhat.com/security/cve/CVE-2025-4802
https://bugzilla.redhat.com/2367468
https://bugzilla.redhat.com/show_bug.cgi?id=2367468
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4802
https://errata.almalinux.org/8/ALSA-2025-8686.html
https://errata.rockylinux.org/RLSA-2025:8655
https://inbox.sourceware.org/libc-announce/3ac997b0-28a5-4129-af53-675efe4c2dec@redhat.com/T/#u
https://linux.oracle.com/cve/CVE-2025-4802.html
https://linux.oracle.com/errata/ELSA-2025-8686.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00033.html
https://nvd.nist.gov/vuln/detail/CVE-2025-4802
https://sourceware.org/bugzilla/show_bug.cgi?id=32976
https://sourceware.org/cgit/glibc/commit/?id=1e18586c5820e329f741d5c710275e165581380e
https://sourceware.org/cgit/glibc/commit/?id=5451fa962cd0a90a0e2ec1d8910a559ace02bba0
https://ubuntu.com/security/notices/USN-7541-1
https://www.cve.org/CVERecord?id=CVE-2025-4802
https://www.openwall.com/lists/oss-security/2025/05/16/7
https://www.openwall.com/lists/oss-security/2025/05/17/2
|
| libc6 |
CVE-2025-4802 |
MEDIUM |
2.31-0ubuntu9.17 |
2.31-0ubuntu9.18 |
http://www.openwall.com/lists/oss-security/2025/05/16/7
http://www.openwall.com/lists/oss-security/2025/05/17/2
https://access.redhat.com/errata/RHSA-2025:8686
https://access.redhat.com/security/cve/CVE-2025-4802
https://bugzilla.redhat.com/2367468
https://bugzilla.redhat.com/show_bug.cgi?id=2367468
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-4802
https://errata.almalinux.org/8/ALSA-2025-8686.html
https://errata.rockylinux.org/RLSA-2025:8655
https://inbox.sourceware.org/libc-announce/3ac997b0-28a5-4129-af53-675efe4c2dec@redhat.com/T/#u
https://linux.oracle.com/cve/CVE-2025-4802.html
https://linux.oracle.com/errata/ELSA-2025-8686.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00033.html
https://nvd.nist.gov/vuln/detail/CVE-2025-4802
https://sourceware.org/bugzilla/show_bug.cgi?id=32976
https://sourceware.org/cgit/glibc/commit/?id=1e18586c5820e329f741d5c710275e165581380e
https://sourceware.org/cgit/glibc/commit/?id=5451fa962cd0a90a0e2ec1d8910a559ace02bba0
https://ubuntu.com/security/notices/USN-7541-1
https://www.cve.org/CVERecord?id=CVE-2025-4802
https://www.openwall.com/lists/oss-security/2025/05/16/7
https://www.openwall.com/lists/oss-security/2025/05/17/2
|
| libgssapi-krb5-2 |
CVE-2025-3576 |
MEDIUM |
1.17-6ubuntu4.9 |
1.17-6ubuntu4.11 |
https://access.redhat.com/errata/RHSA-2025:11487
https://access.redhat.com/errata/RHSA-2025:13664
https://access.redhat.com/errata/RHSA-2025:13777
https://access.redhat.com/errata/RHSA-2025:15000
https://access.redhat.com/errata/RHSA-2025:15001
https://access.redhat.com/errata/RHSA-2025:15002
https://access.redhat.com/errata/RHSA-2025:15003
https://access.redhat.com/errata/RHSA-2025:15004
https://access.redhat.com/errata/RHSA-2025:8411
https://access.redhat.com/errata/RHSA-2025:9418
https://access.redhat.com/errata/RHSA-2025:9430
https://access.redhat.com/security/cve/CVE-2025-3576
https://bugzilla.redhat.com/2359465
https://bugzilla.redhat.com/show_bug.cgi?id=2359465
https://cert-portal.siemens.com/productcert/html/ssa-577017.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576
https://errata.almalinux.org/8/ALSA-2025-8411.html
https://errata.rockylinux.org/RLSA-2025:9430
https://linux.oracle.com/cve/CVE-2025-3576.html
https://linux.oracle.com/errata/ELSA-2025-9430.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html
https://nvd.nist.gov/vuln/detail/CVE-2025-3576
https://ubuntu.com/security/notices/USN-7542-1
https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html
https://www.cve.org/CVERecord?id=CVE-2025-3576
|
| libk5crypto3 |
CVE-2025-3576 |
MEDIUM |
1.17-6ubuntu4.9 |
1.17-6ubuntu4.11 |
https://access.redhat.com/errata/RHSA-2025:11487
https://access.redhat.com/errata/RHSA-2025:13664
https://access.redhat.com/errata/RHSA-2025:13777
https://access.redhat.com/errata/RHSA-2025:15000
https://access.redhat.com/errata/RHSA-2025:15001
https://access.redhat.com/errata/RHSA-2025:15002
https://access.redhat.com/errata/RHSA-2025:15003
https://access.redhat.com/errata/RHSA-2025:15004
https://access.redhat.com/errata/RHSA-2025:8411
https://access.redhat.com/errata/RHSA-2025:9418
https://access.redhat.com/errata/RHSA-2025:9430
https://access.redhat.com/security/cve/CVE-2025-3576
https://bugzilla.redhat.com/2359465
https://bugzilla.redhat.com/show_bug.cgi?id=2359465
https://cert-portal.siemens.com/productcert/html/ssa-577017.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576
https://errata.almalinux.org/8/ALSA-2025-8411.html
https://errata.rockylinux.org/RLSA-2025:9430
https://linux.oracle.com/cve/CVE-2025-3576.html
https://linux.oracle.com/errata/ELSA-2025-9430.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html
https://nvd.nist.gov/vuln/detail/CVE-2025-3576
https://ubuntu.com/security/notices/USN-7542-1
https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html
https://www.cve.org/CVERecord?id=CVE-2025-3576
|
| libkrb5-3 |
CVE-2025-3576 |
MEDIUM |
1.17-6ubuntu4.9 |
1.17-6ubuntu4.11 |
https://access.redhat.com/errata/RHSA-2025:11487
https://access.redhat.com/errata/RHSA-2025:13664
https://access.redhat.com/errata/RHSA-2025:13777
https://access.redhat.com/errata/RHSA-2025:15000
https://access.redhat.com/errata/RHSA-2025:15001
https://access.redhat.com/errata/RHSA-2025:15002
https://access.redhat.com/errata/RHSA-2025:15003
https://access.redhat.com/errata/RHSA-2025:15004
https://access.redhat.com/errata/RHSA-2025:8411
https://access.redhat.com/errata/RHSA-2025:9418
https://access.redhat.com/errata/RHSA-2025:9430
https://access.redhat.com/security/cve/CVE-2025-3576
https://bugzilla.redhat.com/2359465
https://bugzilla.redhat.com/show_bug.cgi?id=2359465
https://cert-portal.siemens.com/productcert/html/ssa-577017.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576
https://errata.almalinux.org/8/ALSA-2025-8411.html
https://errata.rockylinux.org/RLSA-2025:9430
https://linux.oracle.com/cve/CVE-2025-3576.html
https://linux.oracle.com/errata/ELSA-2025-9430.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html
https://nvd.nist.gov/vuln/detail/CVE-2025-3576
https://ubuntu.com/security/notices/USN-7542-1
https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html
https://www.cve.org/CVERecord?id=CVE-2025-3576
|
| libkrb5support0 |
CVE-2025-3576 |
MEDIUM |
1.17-6ubuntu4.9 |
1.17-6ubuntu4.11 |
https://access.redhat.com/errata/RHSA-2025:11487
https://access.redhat.com/errata/RHSA-2025:13664
https://access.redhat.com/errata/RHSA-2025:13777
https://access.redhat.com/errata/RHSA-2025:15000
https://access.redhat.com/errata/RHSA-2025:15001
https://access.redhat.com/errata/RHSA-2025:15002
https://access.redhat.com/errata/RHSA-2025:15003
https://access.redhat.com/errata/RHSA-2025:15004
https://access.redhat.com/errata/RHSA-2025:8411
https://access.redhat.com/errata/RHSA-2025:9418
https://access.redhat.com/errata/RHSA-2025:9430
https://access.redhat.com/security/cve/CVE-2025-3576
https://bugzilla.redhat.com/2359465
https://bugzilla.redhat.com/show_bug.cgi?id=2359465
https://cert-portal.siemens.com/productcert/html/ssa-577017.html
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-3576
https://errata.almalinux.org/8/ALSA-2025-8411.html
https://errata.rockylinux.org/RLSA-2025:9430
https://linux.oracle.com/cve/CVE-2025-3576.html
https://linux.oracle.com/errata/ELSA-2025-9430.html
https://lists.debian.org/debian-lts-announce/2025/05/msg00047.html
https://nvd.nist.gov/vuln/detail/CVE-2025-3576
https://ubuntu.com/security/notices/USN-7542-1
https://web.mit.edu/kerberos/krb5-1.22/krb5-1.22.html
https://www.cve.org/CVERecord?id=CVE-2025-3576
|
| libsqlite3-0 |
CVE-2025-29088 |
MEDIUM |
3.31.1-4ubuntu0.6 |
3.31.1-4ubuntu0.7 |
https://access.redhat.com/security/cve/CVE-2025-29088
https://gist.github.com/ylwango613/d3883fb9f6ba8a78086356779ce88248
https://github.com/sqlite/sqlite/commit/56d2fd008b108109f489339f5fd55212bb50afd4
https://nvd.nist.gov/vuln/detail/CVE-2025-29088
https://sqlite.org/forum/forumpost/48f365daec
https://sqlite.org/releaselog/3_49_1.html
https://ubuntu.com/security/notices/USN-7528-1
https://ubuntu.com/security/notices/USN-7679-1
https://www.cve.org/CVERecord?id=CVE-2025-29088
https://www.sqlite.org/cves.html
|
| No Misconfigurations found |
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.15.0 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.17.2 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
MEDIUM |
2.17.2 |
2.21.1, 2.18.6 |
https://github.com/FasterXML/jackson-core
https://github.com/FasterXML/jackson-core/commit/b0c428e6f993e1b5ece5c1c3cb2523e887cd52cf
https://github.com/FasterXML/jackson-core/pull/1555
https://github.com/FasterXML/jackson-core/security/advisories/GHSA-72hv-8253-57qq
|
| com.sun.mail:jakarta.mail |
CVE-2025-7962 |
MEDIUM |
1.6.3 |
1.6.8, 2.0.2 |
http://www.openwall.com/lists/oss-security/2025/09/03/4
https://access.redhat.com/security/cve/CVE-2025-7962
https://github.com/eclipse-ee4j/angus-mail
https://github.com/eclipse-ee4j/angus-mail/commit/269099b652a0a5c2fa140f1296a18f0fbbea0d44
https://github.com/jakartaee/mail-api/issues/765
https://github.com/jakartaee/mail-api/pull/760
https://gitlab.eclipse.org/security/cve-assignement/-/issues/67
https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/290
https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/290#note_5320539
https://nvd.nist.gov/vuln/detail/CVE-2025-7962
https://www.cve.org/CVERecord?id=CVE-2025-7962
|
| com.sun.mail:jakarta.mail |
CVE-2025-7962 |
MEDIUM |
1.6.4 |
1.6.8, 2.0.2 |
http://www.openwall.com/lists/oss-security/2025/09/03/4
https://access.redhat.com/security/cve/CVE-2025-7962
https://github.com/eclipse-ee4j/angus-mail
https://github.com/eclipse-ee4j/angus-mail/commit/269099b652a0a5c2fa140f1296a18f0fbbea0d44
https://github.com/jakartaee/mail-api/issues/765
https://github.com/jakartaee/mail-api/pull/760
https://gitlab.eclipse.org/security/cve-assignement/-/issues/67
https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/290
https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/290#note_5320539
https://nvd.nist.gov/vuln/detail/CVE-2025-7962
https://www.cve.org/CVERecord?id=CVE-2025-7962
|
| io.netty:netty-codec |
CVE-2026-42583 |
HIGH |
4.1.118.Final |
4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
https://nvd.nist.gov/vuln/detail/CVE-2026-42583
https://www.cve.org/CVERecord?id=CVE-2026-42583
|
| io.netty:netty-codec |
CVE-2026-42583 |
HIGH |
4.1.118.Final |
4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
https://nvd.nist.gov/vuln/detail/CVE-2026-42583
https://www.cve.org/CVERecord?id=CVE-2026-42583
|
| io.netty:netty-codec |
CVE-2026-42583 |
HIGH |
4.1.118.Final |
4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
https://nvd.nist.gov/vuln/detail/CVE-2026-42583
https://www.cve.org/CVERecord?id=CVE-2026-42583
|
| io.netty:netty-codec |
CVE-2026-42583 |
HIGH |
4.1.118.Final |
4.1.133.Final |
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
https://nvd.nist.gov/vuln/detail/CVE-2026-42583
https://www.cve.org/CVERecord?id=CVE-2026-42583
|
| io.netty:netty-codec |
CVE-2025-58057 |
MEDIUM |
4.1.118.Final |
4.1.125.Final |
https://access.redhat.com/security/cve/CVE-2025-58057
https://github.com/netty/netty
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d (netty-4.2.5.Final)
https://github.com/netty/netty/security/advisories/GHSA-3p8m-j85q-pgmj
https://nvd.nist.gov/vuln/detail/CVE-2025-58057
https://ubuntu.com/security/notices/USN-7918-1
https://www.cve.org/CVERecord?id=CVE-2025-58057
|
| io.netty:netty-codec |
CVE-2025-58057 |
MEDIUM |
4.1.118.Final |
4.1.125.Final |
https://access.redhat.com/security/cve/CVE-2025-58057
https://github.com/netty/netty
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d (netty-4.2.5.Final)
https://github.com/netty/netty/security/advisories/GHSA-3p8m-j85q-pgmj
https://nvd.nist.gov/vuln/detail/CVE-2025-58057
https://ubuntu.com/security/notices/USN-7918-1
https://www.cve.org/CVERecord?id=CVE-2025-58057
|
| io.netty:netty-codec |
CVE-2025-58057 |
MEDIUM |
4.1.118.Final |
4.1.125.Final |
https://access.redhat.com/security/cve/CVE-2025-58057
https://github.com/netty/netty
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d (netty-4.2.5.Final)
https://github.com/netty/netty/security/advisories/GHSA-3p8m-j85q-pgmj
https://nvd.nist.gov/vuln/detail/CVE-2025-58057
https://ubuntu.com/security/notices/USN-7918-1
https://www.cve.org/CVERecord?id=CVE-2025-58057
|
| io.netty:netty-codec |
CVE-2025-58057 |
MEDIUM |
4.1.118.Final |
4.1.125.Final |
https://access.redhat.com/security/cve/CVE-2025-58057
https://github.com/netty/netty
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d
https://github.com/netty/netty/commit/9d804c54ce962408ae6418255a83a13924f7145d (netty-4.2.5.Final)
https://github.com/netty/netty/security/advisories/GHSA-3p8m-j85q-pgmj
https://nvd.nist.gov/vuln/detail/CVE-2025-58057
https://ubuntu.com/security/notices/USN-7918-1
https://www.cve.org/CVERecord?id=CVE-2025-58057
|
| io.netty:netty-codec-dns |
CVE-2026-42579 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42579
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm
https://nvd.nist.gov/vuln/detail/CVE-2026-42579
https://tools.ietf.org/html/rfc1035#section-2.3.4
https://tools.ietf.org/html/rfc1035#section-4.1.4
https://www.cve.org/CVERecord?id=CVE-2026-42579
|
| io.netty:netty-codec-dns |
CVE-2026-42579 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42579
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-cm33-6792-r9fm
https://nvd.nist.gov/vuln/detail/CVE-2026-42579
https://tools.ietf.org/html/rfc1035#section-2.3.4
https://tools.ietf.org/html/rfc1035#section-4.1.4
https://www.cve.org/CVERecord?id=CVE-2026-42579
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.118.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.118.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.118.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
HIGH |
4.1.118.Final |
4.1.132.Final, 4.2.10.Final |
https://access.redhat.com/security/cve/CVE-2026-33870
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8
https://nvd.nist.gov/vuln/detail/CVE-2026-33870
https://w4ke.info/2025/06/18/funky-chunks.html
https://w4ke.info/2025/10/29/funky-chunks-2.html
https://www.cve.org/CVERecord?id=CVE-2026-33870
https://www.rfc-editor.org/rfc/rfc9110
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42584
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
https://nvd.nist.gov/vuln/detail/CVE-2026-42584
https://www.cve.org/CVERecord?id=CVE-2026-42584
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42584
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
https://nvd.nist.gov/vuln/detail/CVE-2026-42584
https://www.cve.org/CVERecord?id=CVE-2026-42584
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42584
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
https://nvd.nist.gov/vuln/detail/CVE-2026-42584
https://www.cve.org/CVERecord?id=CVE-2026-42584
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42584
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
https://nvd.nist.gov/vuln/detail/CVE-2026-42584
https://www.cve.org/CVERecord?id=CVE-2026-42584
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-codec-http |
CVE-2025-67735 |
MEDIUM |
4.1.118.Final |
4.2.8.Final, 4.1.129.Final |
https://access.redhat.com/security/cve/CVE-2025-67735
https://github.com/netty/netty
https://github.com/netty/netty/commit/77e81f1e5944d98b3acf887d3aa443b252752e94
https://github.com/netty/netty/security/advisories/GHSA-84h7-rjj3-6jx4
https://nvd.nist.gov/vuln/detail/CVE-2025-67735
https://www.cve.org/CVERecord?id=CVE-2025-67735
|
| io.netty:netty-codec-http |
CVE-2025-67735 |
MEDIUM |
4.1.118.Final |
4.2.8.Final, 4.1.129.Final |
https://access.redhat.com/security/cve/CVE-2025-67735
https://github.com/netty/netty
https://github.com/netty/netty/commit/77e81f1e5944d98b3acf887d3aa443b252752e94
https://github.com/netty/netty/security/advisories/GHSA-84h7-rjj3-6jx4
https://nvd.nist.gov/vuln/detail/CVE-2025-67735
https://www.cve.org/CVERecord?id=CVE-2025-67735
|
| io.netty:netty-codec-http |
CVE-2025-67735 |
MEDIUM |
4.1.118.Final |
4.2.8.Final, 4.1.129.Final |
https://access.redhat.com/security/cve/CVE-2025-67735
https://github.com/netty/netty
https://github.com/netty/netty/commit/77e81f1e5944d98b3acf887d3aa443b252752e94
https://github.com/netty/netty/security/advisories/GHSA-84h7-rjj3-6jx4
https://nvd.nist.gov/vuln/detail/CVE-2025-67735
https://www.cve.org/CVERecord?id=CVE-2025-67735
|
| io.netty:netty-codec-http |
CVE-2025-67735 |
MEDIUM |
4.1.118.Final |
4.2.8.Final, 4.1.129.Final |
https://access.redhat.com/security/cve/CVE-2025-67735
https://github.com/netty/netty
https://github.com/netty/netty/commit/77e81f1e5944d98b3acf887d3aa443b252752e94
https://github.com/netty/netty/security/advisories/GHSA-84h7-rjj3-6jx4
https://nvd.nist.gov/vuln/detail/CVE-2025-67735
https://www.cve.org/CVERecord?id=CVE-2025-67735
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
MEDIUM |
4.1.118.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-41417
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv
https://nvd.nist.gov/vuln/detail/CVE-2026-41417
https://www.cve.org/CVERecord?id=CVE-2026-41417
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
MEDIUM |
4.1.118.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-41417
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv
https://nvd.nist.gov/vuln/detail/CVE-2026-41417
https://www.cve.org/CVERecord?id=CVE-2026-41417
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
MEDIUM |
4.1.118.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-41417
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv
https://nvd.nist.gov/vuln/detail/CVE-2026-41417
https://www.cve.org/CVERecord?id=CVE-2026-41417
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
MEDIUM |
4.1.118.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-41417
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-v8h7-rr48-vmmv
https://nvd.nist.gov/vuln/detail/CVE-2026-41417
https://www.cve.org/CVERecord?id=CVE-2026-41417
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42580
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723
https://nvd.nist.gov/vuln/detail/CVE-2026-42580
https://www.cve.org/CVERecord?id=CVE-2026-42580
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42580
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723
https://nvd.nist.gov/vuln/detail/CVE-2026-42580
https://www.cve.org/CVERecord?id=CVE-2026-42580
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42580
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723
https://nvd.nist.gov/vuln/detail/CVE-2026-42580
https://www.cve.org/CVERecord?id=CVE-2026-42580
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42580
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-m4cv-j2px-7723
https://nvd.nist.gov/vuln/detail/CVE-2026-42580
https://www.cve.org/CVERecord?id=CVE-2026-42580
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42581
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9
https://nvd.nist.gov/vuln/detail/CVE-2026-42581
https://www.cve.org/CVERecord?id=CVE-2026-42581
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42581
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9
https://nvd.nist.gov/vuln/detail/CVE-2026-42581
https://www.cve.org/CVERecord?id=CVE-2026-42581
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42581
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9
https://nvd.nist.gov/vuln/detail/CVE-2026-42581
https://www.cve.org/CVERecord?id=CVE-2026-42581
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42581
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-xxqh-mfjm-7mv9
https://nvd.nist.gov/vuln/detail/CVE-2026-42581
https://www.cve.org/CVERecord?id=CVE-2026-42581
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42585
https://datatracker.ietf.org/doc/html/rfc9112#name-message-body-length
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-38f8-5428-x5cv
https://nvd.nist.gov/vuln/detail/CVE-2026-42585
https://www.cve.org/CVERecord?id=CVE-2026-42585
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42585
https://datatracker.ietf.org/doc/html/rfc9112#name-message-body-length
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-38f8-5428-x5cv
https://nvd.nist.gov/vuln/detail/CVE-2026-42585
https://www.cve.org/CVERecord?id=CVE-2026-42585
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42585
https://datatracker.ietf.org/doc/html/rfc9112#name-message-body-length
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-38f8-5428-x5cv
https://nvd.nist.gov/vuln/detail/CVE-2026-42585
https://www.cve.org/CVERecord?id=CVE-2026-42585
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
MEDIUM |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42585
https://datatracker.ietf.org/doc/html/rfc9112#name-message-body-length
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-38f8-5428-x5cv
https://nvd.nist.gov/vuln/detail/CVE-2026-42585
https://www.cve.org/CVERecord?id=CVE-2026-42585
|
| io.netty:netty-codec-http |
CVE-2025-58056 |
LOW |
4.1.118.Final |
4.1.125.Final, 4.2.5.Final |
https://access.redhat.com/security/cve/CVE-2025-58056
https://datatracker.ietf.org/doc/html/rfc9112#name-chunked-transfer-coding
https://github.com/JLLeitschuh/unCVEed/issues/1
https://github.com/github/advisory-database/pull/6092
https://github.com/netty/netty
https://github.com/netty/netty/commit/edb55fd8e0a3bcbd85881e423464f585183d1284
https://github.com/netty/netty/issues/15522
https://github.com/netty/netty/pull/15611
https://github.com/netty/netty/security/advisories/GHSA-fghv-69vj-qj49
https://nvd.nist.gov/vuln/detail/CVE-2025-58056
https://ubuntu.com/security/notices/USN-7918-1
https://w4ke.info/2025/06/18/funky-chunks.html
https://www.cve.org/CVERecord?id=CVE-2025-58056
|
| io.netty:netty-codec-http |
CVE-2025-58056 |
LOW |
4.1.118.Final |
4.1.125.Final, 4.2.5.Final |
https://access.redhat.com/security/cve/CVE-2025-58056
https://datatracker.ietf.org/doc/html/rfc9112#name-chunked-transfer-coding
https://github.com/JLLeitschuh/unCVEed/issues/1
https://github.com/github/advisory-database/pull/6092
https://github.com/netty/netty
https://github.com/netty/netty/commit/edb55fd8e0a3bcbd85881e423464f585183d1284
https://github.com/netty/netty/issues/15522
https://github.com/netty/netty/pull/15611
https://github.com/netty/netty/security/advisories/GHSA-fghv-69vj-qj49
https://nvd.nist.gov/vuln/detail/CVE-2025-58056
https://ubuntu.com/security/notices/USN-7918-1
https://w4ke.info/2025/06/18/funky-chunks.html
https://www.cve.org/CVERecord?id=CVE-2025-58056
|
| io.netty:netty-codec-http |
CVE-2025-58056 |
LOW |
4.1.118.Final |
4.1.125.Final, 4.2.5.Final |
https://access.redhat.com/security/cve/CVE-2025-58056
https://datatracker.ietf.org/doc/html/rfc9112#name-chunked-transfer-coding
https://github.com/JLLeitschuh/unCVEed/issues/1
https://github.com/github/advisory-database/pull/6092
https://github.com/netty/netty
https://github.com/netty/netty/commit/edb55fd8e0a3bcbd85881e423464f585183d1284
https://github.com/netty/netty/issues/15522
https://github.com/netty/netty/pull/15611
https://github.com/netty/netty/security/advisories/GHSA-fghv-69vj-qj49
https://nvd.nist.gov/vuln/detail/CVE-2025-58056
https://ubuntu.com/security/notices/USN-7918-1
https://w4ke.info/2025/06/18/funky-chunks.html
https://www.cve.org/CVERecord?id=CVE-2025-58056
|
| io.netty:netty-codec-http |
CVE-2025-58056 |
LOW |
4.1.118.Final |
4.1.125.Final, 4.2.5.Final |
https://access.redhat.com/security/cve/CVE-2025-58056
https://datatracker.ietf.org/doc/html/rfc9112#name-chunked-transfer-coding
https://github.com/JLLeitschuh/unCVEed/issues/1
https://github.com/github/advisory-database/pull/6092
https://github.com/netty/netty
https://github.com/netty/netty/commit/edb55fd8e0a3bcbd85881e423464f585183d1284
https://github.com/netty/netty/issues/15522
https://github.com/netty/netty/pull/15611
https://github.com/netty/netty/security/advisories/GHSA-fghv-69vj-qj49
https://nvd.nist.gov/vuln/detail/CVE-2025-58056
https://ubuntu.com/security/notices/USN-7918-1
https://w4ke.info/2025/06/18/funky-chunks.html
https://www.cve.org/CVERecord?id=CVE-2025-58056
|
| io.netty:netty-codec-http2 |
CVE-2025-55163 |
HIGH |
4.1.118.Final |
4.2.4.Final, 4.1.124.Final |
http://www.openwall.com/lists/oss-security/2025/08/16/1
https://access.redhat.com/security/cve/CVE-2025-55163
https://github.com/grpc/grpc-java/commit/6462ef9a11980e168c21d90bbc7245c728fd1a7a
https://github.com/netty/netty
https://github.com/netty/netty/commit/be53dc3c9acd9af2e20d0c3c07cd77115a594cf1
https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4
https://kb.cert.org/vuls/id/767506
https://nvd.nist.gov/vuln/detail/CVE-2025-55163
https://www.cve.org/CVERecord?id=CVE-2025-55163
https://www.kb.cert.org/vuls/id/767506
|
| io.netty:netty-codec-http2 |
CVE-2025-55163 |
HIGH |
4.1.118.Final |
4.2.4.Final, 4.1.124.Final |
http://www.openwall.com/lists/oss-security/2025/08/16/1
https://access.redhat.com/security/cve/CVE-2025-55163
https://github.com/grpc/grpc-java/commit/6462ef9a11980e168c21d90bbc7245c728fd1a7a
https://github.com/netty/netty
https://github.com/netty/netty/commit/be53dc3c9acd9af2e20d0c3c07cd77115a594cf1
https://github.com/netty/netty/security/advisories/GHSA-prj3-ccx8-p6x4
https://kb.cert.org/vuls/id/767506
https://nvd.nist.gov/vuln/detail/CVE-2025-55163
https://www.cve.org/CVERecord?id=CVE-2025-55163
https://www.kb.cert.org/vuls/id/767506
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
HIGH |
4.1.118.Final |
4.1.132.Final, 4.2.11.Final |
https://access.redhat.com/security/cve/CVE-2026-33871
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv
https://nvd.nist.gov/vuln/detail/CVE-2026-33871
https://www.cve.org/CVERecord?id=CVE-2026-33871
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
HIGH |
4.1.118.Final |
4.1.132.Final, 4.2.11.Final |
https://access.redhat.com/security/cve/CVE-2026-33871
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv
https://nvd.nist.gov/vuln/detail/CVE-2026-33871
https://www.cve.org/CVERecord?id=CVE-2026-33871
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
HIGH |
4.1.118.Final |
4.2.13.Final, 4.1.133.Final |
https://access.redhat.com/security/cve/CVE-2026-42587
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
https://nvd.nist.gov/vuln/detail/CVE-2026-42587
https://www.cve.org/CVERecord?id=CVE-2026-42587
|
| io.netty:netty-handler-proxy |
CVE-2026-42578 |
LOW |
4.1.118.Final |
4.1.133.Final, 4.2.13.Final |
https://access.redhat.com/security/cve/CVE-2026-42578
https://github.com/advisories/GHSA-84h7-rjj3-6jx4
https://github.com/netty/netty
https://github.com/netty/netty/security/advisories/GHSA-45q3-82m4-75jr
https://nvd.nist.gov/vuln/detail/CVE-2026-42578
https://www.cve.org/CVERecord?id=CVE-2026-42578
|
| io.opentelemetry:opentelemetry-api |
CVE-2026-45292 |
MEDIUM |
1.31.0 |
1.62.0 |
https://access.redhat.com/security/cve/CVE-2026-45292
https://github.com/open-telemetry/opentelemetry-java
https://github.com/open-telemetry/opentelemetry-java/commit/03837d3c1763bc35464aea1078671e2ef2336a5f
https://github.com/open-telemetry/opentelemetry-java/pull/8380
https://github.com/open-telemetry/opentelemetry-java/releases/tag/v1.62.0
https://github.com/open-telemetry/opentelemetry-java/security/advisories/GHSA-rcgg-9c38-7xpx
https://nvd.nist.gov/vuln/detail/CVE-2026-45292
https://www.cve.org/CVERecord?id=CVE-2026-45292
|
| io.projectreactor.netty:reactor-netty-http |
CVE-2025-22227 |
MEDIUM |
1.0.45 |
1.3.0-M5, 1.2.8 |
https://access.redhat.com/security/cve/CVE-2025-22227
https://github.com/reactor/reactor-netty
https://github.com/reactor/reactor-netty/commit/522892307ea89bf24fe634e8bfea35728c9bf411
https://nvd.nist.gov/vuln/detail/CVE-2025-22227
https://spring.io/security/cve-2025-22227
https://www.cve.org/CVERecord?id=CVE-2025-22227
|
| org.apache.commons:commons-lang3 |
CVE-2025-48924 |
MEDIUM |
3.14.0 |
3.18.0 |
http://www.openwall.com/lists/oss-security/2025/07/11/1
https://access.redhat.com/security/cve/CVE-2025-48924
https://github.com/apache/commons-lang
https://github.com/apache/commons-lang/commit/b424803abdb2bec818e4fbcb251ce031c22aca53
https://lists.apache.org/thread/bgv0lpswokgol11tloxnjfzdl7yrc1g1
https://lists.debian.org/debian-lts-announce/2025/08/msg00000.html
https://lists.debian.org/debian-lts-announce/2025/08/msg00026.html
https://lists.debian.org/debian-lts-announce/2025/09/msg00032.html
https://lists.debian.org/debian-lts-announce/2025/09/msg00036.html
https://nvd.nist.gov/vuln/detail/CVE-2025-48924
https://ubuntu.com/security/notices/USN-8364-1
https://www.cve.org/CVERecord?id=CVE-2025-48924
https://www.openwall.com/lists/oss-security/2025/07/11/1
|
| org.apache.commons:commons-lang3 |
CVE-2025-48924 |
MEDIUM |
3.9 |
3.18.0 |
http://www.openwall.com/lists/oss-security/2025/07/11/1
https://access.redhat.com/security/cve/CVE-2025-48924
https://github.com/apache/commons-lang
https://github.com/apache/commons-lang/commit/b424803abdb2bec818e4fbcb251ce031c22aca53
https://lists.apache.org/thread/bgv0lpswokgol11tloxnjfzdl7yrc1g1
https://lists.debian.org/debian-lts-announce/2025/08/msg00000.html
https://lists.debian.org/debian-lts-announce/2025/08/msg00026.html
https://lists.debian.org/debian-lts-announce/2025/09/msg00032.html
https://lists.debian.org/debian-lts-announce/2025/09/msg00036.html
https://nvd.nist.gov/vuln/detail/CVE-2025-48924
https://ubuntu.com/security/notices/USN-8364-1
https://www.cve.org/CVERecord?id=CVE-2025-48924
https://www.openwall.com/lists/oss-security/2025/07/11/1
|
| org.apache.logging.log4j:log4j-1.2-api |
CVE-2026-34479 |
MEDIUM |
2.19.0 |
2.25.4 |
http://www.openwall.com/lists/oss-security/2026/04/10/8
https://access.redhat.com/security/cve/CVE-2026-34479
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4078
https://lists.apache.org/thread/gd0hp6mj17rn3kj279vgy4p7kd4zz5on
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/migrate-from-log4j1.html
https://logging.apache.org/security.html#CVE-2026-34479
https://nvd.nist.gov/vuln/detail/CVE-2026-34479
https://www.cve.org/CVERecord?id=CVE-2026-34479
|
| org.apache.logging.log4j:log4j-1.2-api |
CVE-2026-34479 |
MEDIUM |
2.19.0 |
2.25.4 |
http://www.openwall.com/lists/oss-security/2026/04/10/8
https://access.redhat.com/security/cve/CVE-2026-34479
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4078
https://lists.apache.org/thread/gd0hp6mj17rn3kj279vgy4p7kd4zz5on
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/migrate-from-log4j1.html
https://logging.apache.org/security.html#CVE-2026-34479
https://nvd.nist.gov/vuln/detail/CVE-2026-34479
https://www.cve.org/CVERecord?id=CVE-2026-34479
|
| org.apache.logging.log4j:log4j-1.2-api |
CVE-2026-34479 |
MEDIUM |
2.19.0 |
2.25.4 |
http://www.openwall.com/lists/oss-security/2026/04/10/8
https://access.redhat.com/security/cve/CVE-2026-34479
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4078
https://lists.apache.org/thread/gd0hp6mj17rn3kj279vgy4p7kd4zz5on
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/migrate-from-log4j1.html
https://logging.apache.org/security.html#CVE-2026-34479
https://nvd.nist.gov/vuln/detail/CVE-2026-34479
https://www.cve.org/CVERecord?id=CVE-2026-34479
|
| org.apache.logging.log4j:log4j-1.2-api |
CVE-2026-34479 |
MEDIUM |
2.19.0 |
2.25.4 |
http://www.openwall.com/lists/oss-security/2026/04/10/8
https://access.redhat.com/security/cve/CVE-2026-34479
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4078
https://lists.apache.org/thread/gd0hp6mj17rn3kj279vgy4p7kd4zz5on
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/migrate-from-log4j1.html
https://logging.apache.org/security.html#CVE-2026-34479
https://nvd.nist.gov/vuln/detail/CVE-2026-34479
https://www.cve.org/CVERecord?id=CVE-2026-34479
|
| org.apache.logging.log4j:log4j-core |
CVE-2025-68161 |
MEDIUM |
2.12.4 |
2.25.3 |
http://www.openwall.com/lists/oss-security/2025/12/18/1
https://access.redhat.com/security/cve/CVE-2025-68161
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/commit/3b93748497e1adbbd027fda8a5e7268ec5d0d578
https://github.com/apache/logging-log4j2/pull/4002
https://lists.apache.org/thread/xr33kyxq3sl67lwb61ggvm1fzc8k7dvx
https://lists.debian.org/debian-lts-announce/2026/01/msg00015.html
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/manual/appenders/network.html#SslConfiguration-attr-verifyHostName
https://logging.apache.org/log4j/2.x/manual/systemproperties.html#log4j2.sslVerifyHostName
https://logging.apache.org/security.html#CVE-2025-68161
https://nvd.nist.gov/vuln/detail/CVE-2025-68161
https://www.cve.org/CVERecord?id=CVE-2025-68161
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34477 |
MEDIUM |
2.12.4 |
2.25.4 |
https://access.redhat.com/security/cve/CVE-2026-34477
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4075
https://lists.apache.org/thread/lkx8cl46t2bvkcwfcb2pd43ygc097lq4
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/manual/appenders/network.html#SslConfiguration-attr-verifyHostName
https://logging.apache.org/security.html#CVE-2026-34477
https://nvd.nist.gov/vuln/detail/CVE-2026-34477
https://www.cve.org/CVERecord?id=CVE-2026-34477
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34480 |
MEDIUM |
2.12.4 |
2.25.4 |
http://www.openwall.com/lists/oss-security/2026/04/10/9
https://access.redhat.com/security/cve/CVE-2026-34480
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4077
https://lists.apache.org/thread/5x0hcnng0chhghp6jgjdp3qmbbhfjzhb
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/manual/layouts.html#XmlLayout
https://logging.apache.org/security.html#CVE-2026-34480
https://nvd.nist.gov/vuln/detail/CVE-2026-34480
https://www.cve.org/CVERecord?id=CVE-2026-34480
|
| org.apache.logging.log4j:log4j-core |
CVE-2025-68161 |
MEDIUM |
2.19.0 |
2.25.3 |
http://www.openwall.com/lists/oss-security/2025/12/18/1
https://access.redhat.com/security/cve/CVE-2025-68161
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/commit/3b93748497e1adbbd027fda8a5e7268ec5d0d578
https://github.com/apache/logging-log4j2/pull/4002
https://lists.apache.org/thread/xr33kyxq3sl67lwb61ggvm1fzc8k7dvx
https://lists.debian.org/debian-lts-announce/2026/01/msg00015.html
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/manual/appenders/network.html#SslConfiguration-attr-verifyHostName
https://logging.apache.org/log4j/2.x/manual/systemproperties.html#log4j2.sslVerifyHostName
https://logging.apache.org/security.html#CVE-2025-68161
https://nvd.nist.gov/vuln/detail/CVE-2025-68161
https://www.cve.org/CVERecord?id=CVE-2025-68161
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34477 |
MEDIUM |
2.19.0 |
2.25.4 |
https://access.redhat.com/security/cve/CVE-2026-34477
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4075
https://lists.apache.org/thread/lkx8cl46t2bvkcwfcb2pd43ygc097lq4
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/manual/appenders/network.html#SslConfiguration-attr-verifyHostName
https://logging.apache.org/security.html#CVE-2026-34477
https://nvd.nist.gov/vuln/detail/CVE-2026-34477
https://www.cve.org/CVERecord?id=CVE-2026-34477
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34480 |
MEDIUM |
2.19.0 |
2.25.4 |
http://www.openwall.com/lists/oss-security/2026/04/10/9
https://access.redhat.com/security/cve/CVE-2026-34480
https://github.com/apache/logging-log4j2
https://github.com/apache/logging-log4j2/pull/4077
https://lists.apache.org/thread/5x0hcnng0chhghp6jgjdp3qmbbhfjzhb
https://logging.apache.org/cyclonedx/vdr.xml
https://logging.apache.org/log4j/2.x/manual/layouts.html#XmlLayout
https://logging.apache.org/security.html#CVE-2026-34480
https://nvd.nist.gov/vuln/detail/CVE-2026-34480
https://www.cve.org/CVERecord?id=CVE-2026-34480
|
| org.apache.poi:poi-ooxml |
CVE-2025-31672 |
MEDIUM |
5.2.5 |
5.4.0 |
http://www.openwall.com/lists/oss-security/2025/04/08/2
https://access.redhat.com/security/cve/CVE-2025-31672
https://bz.apache.org/bugzilla/show_bug.cgi?id=69620
https://github.com/apache/poi
https://lists.apache.org/thread/k14w8vcjqy4h34hh5kzldko78kpylkq5
https://nvd.nist.gov/vuln/detail/CVE-2025-31672
https://security.netapp.com/advisory/ntap-20250523-0004
https://security.netapp.com/advisory/ntap-20250523-0004/
https://www.cve.org/CVERecord?id=CVE-2025-31672
|
| org.apache.tika:tika-core |
CVE-2025-66516 |
CRITICAL |
2.9.2 |
3.2.2 |
https://access.redhat.com/security/cve/CVE-2025-66516
https://cve.org/CVERecord?id=CVE-2025-54988
https://github.com/apache/tika
https://lists.apache.org/thread/s5x3k93nhbkqzztp1olxotoyjpdlps9k
https://nvd.nist.gov/vuln/detail/CVE-2025-66516
https://ubuntu.com/security/notices/USN-8324-1
https://www.cve.org/CVERecord?id=CVE-2025-66516
|
| org.apache.tika:tika-parser-pdf-module |
CVE-2025-54988 |
CRITICAL |
2.9.2 |
3.2.2 |
http://www.openwall.com/lists/oss-security/2025/08/20/2
http://www.openwall.com/lists/oss-security/2025/08/20/3
https://access.redhat.com/security/cve/CVE-2025-54988
https://archive.apache.org/dist/tika/3.2.2/CHANGES-3.2.2.txt
https://github.com/apache/tika
https://github.com/apache/tika/commit/2b52257304f4d3cde2b8463657380bdb936d9ef2
https://github.com/apache/tika/commit/bfee6d5569fe9197c4ea947a96e212825184ca33
https://github.com/apache/tika/pull/2291
https://issues.apache.org/jira/browse/TIKA-4459
https://lists.apache.org/thread/8xn3rqy6kz5b3l1t83kcofkw0w4mmj1w
https://lists.apache.org/thread/stn9oh7rfn9yv76n1srxr9w56oy04p72
https://lists.debian.org/debian-lts-announce/2025/10/msg00030.html
https://nvd.nist.gov/vuln/detail/CVE-2025-54988
https://ubuntu.com/security/notices/USN-8324-1
https://www.cve.org/CVERecord?id=CVE-2025-54988
https://www.openwall.com/lists/oss-security/2025/08/20/3
|
| org.apache.tika:tika-parser-pdf-module |
CVE-2025-66516 |
CRITICAL |
2.9.2 |
3.2.2 |
https://access.redhat.com/security/cve/CVE-2025-66516
https://cve.org/CVERecord?id=CVE-2025-54988
https://github.com/apache/tika
https://lists.apache.org/thread/s5x3k93nhbkqzztp1olxotoyjpdlps9k
https://nvd.nist.gov/vuln/detail/CVE-2025-66516
https://ubuntu.com/security/notices/USN-8324-1
https://www.cve.org/CVERecord?id=CVE-2025-66516
|
| org.bouncycastle:bc-fips |
CVE-2025-8885 |
MEDIUM |
1.0.2.5 |
1.0.2.6, 2.0.1 |
https://access.redhat.com/security/cve/CVE-2025-8885
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/blob/main/core/src/main/java/org/bouncycastle/asn1/ASN1ObjectIdentifier.java
https://github.com/bcgit/bc-java/commit/3790993df5d28f661a64439a8664343437ed3865
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%908885
https://nvd.nist.gov/vuln/detail/CVE-2025-8885
https://www.cve.org/CVERecord?id=CVE-2025-8885
|
| org.bouncycastle:bcpkix-jdk18on |
CVE-2025-8916 |
MEDIUM |
1.78.1 |
1.79 |
https://access.redhat.com/security/cve/CVE-2025-8916
https://cert-portal.siemens.com/productcert/html/ssa-032379.html
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/310b30a4fbf36d13f6cc201ffa7771715641e67e
https://github.com/bcgit/bc-java/commit/ff444a479942d88de64004dc82c3ee32a9e9075a
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%908916
https://nvd.nist.gov/vuln/detail/CVE-2025-8916
https://ubuntu.com/security/notices/USN-8108-1
https://www.cve.org/CVERecord?id=CVE-2025-8916
|
| org.bouncycastle:bcpkix-jdk18on |
CVE-2026-5588 |
MEDIUM |
1.78.1 |
1.84 |
https://access.redhat.com/security/cve/CVE-2026-5588
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/656bae0dbd9b1521f840521ff786e78749fe3057
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905588
https://nvd.nist.gov/vuln/detail/CVE-2026-5588
https://www.cve.org/CVERecord?id=CVE-2026-5588
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-5598 |
HIGH |
1.78.1 |
1.84 |
https://access.redhat.com/security/cve/CVE-2026-5598
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/8692e6b2b191fc4aafa32545c7a78bdb9bf110c5
https://github.com/bcgit/bc-java/commit/94abbd56413dfdac651fd878bc60253871ef5e87
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905598
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905998
https://github.com/bcgit/bc-java/wiki/CVE-2026-5598
https://nvd.nist.gov/vuln/detail/CVE-2026-5598
https://www.cve.org/CVERecord?id=CVE-2026-5598
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-0636 |
MEDIUM |
1.78.1 |
1.84 |
https://access.redhat.com/security/cve/CVE-2026-0636
https://github.com/bcgit/bc-java
https://github.com/bcgit/bc-java/commit/d20cdb8430e09224114fec0179a71859929fcbde
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%900636
https://nvd.nist.gov/vuln/detail/CVE-2026-0636
https://www.cve.org/CVERecord?id=CVE-2026-0636
|
| org.elasticsearch.plugin:x-pack-core |
CVE-2025-68390 |
MEDIUM |
8.17.4 |
8.19.8, 9.1.8, 9.2.2 |
https://access.redhat.com/security/cve/CVE-2025-68390
https://discuss.elastic.co/t/elasticsearch-8-19-8-9-1-8-and-9-2-2-security-update-esa-2025-37/384185
https://github.com/elastic/elasticsearch
https://github.com/elastic/elasticsearch/pull/138132
https://nvd.nist.gov/vuln/detail/CVE-2025-68390
https://www.cve.org/CVERecord?id=CVE-2025-68390
|
| org.elasticsearch.plugin:x-pack-security |
CVE-2025-68384 |
MEDIUM |
8.17.4 |
8.19.9, 9.1.9, 9.2.3 |
https://access.redhat.com/security/cve/CVE-2025-68384
https://discuss.elastic.co/t/elasticsearch-8-19-9-9-1-9-and-9-2-3-security-update-esa-2025-33/384181
https://github.com/elastic/elasticsearch
https://github.com/elastic/elasticsearch/commit/ab1d99ae033f2a23a8856b47a2d86652ad63a39a
https://github.com/elastic/elasticsearch/commit/b46a4f64baea79c4d3afd58bda39d258de97210a
https://github.com/elastic/elasticsearch/pull/138691
https://nvd.nist.gov/vuln/detail/CVE-2025-68384
https://www.cve.org/CVERecord?id=CVE-2025-68384
|
| org.elasticsearch:elasticsearch |
CVE-2025-37727 |
MEDIUM |
8.17.4 |
8.18.8, 8.19.5, 9.0.8, 9.1.5 |
https://access.redhat.com/security/cve/CVE-2025-37727
https://discuss.elastic.co/t/elasticsearch-8-18-8-8-19-5-9-0-8-9-1-5-security-update-esa-2025-18/382453
https://github.com/elastic/elasticsearch
https://github.com/elastic/elasticsearch/commit/e982eef416a5e1c2a4e94236d7d3b33b5c8d07db
https://nvd.nist.gov/vuln/detail/CVE-2025-37727
https://www.cve.org/CVERecord?id=CVE-2025-37727
https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex
https://www.elastic.co/guide/en/elasticsearch/reference/8.18/release-notes-8.18.8.html
|
| org.elasticsearch:elasticsearch |
CVE-2025-37731 |
MEDIUM |
8.17.4 |
8.19.8, 9.1.8, 9.2.2 |
https://access.redhat.com/security/cve/CVE-2025-37731
https://discuss.elastic.co/t/elasticsearch-8-19-8-9-1-8-and-9-2-2-security-update-esa-2025-27/384063
https://github.com/elastic/elasticsearch
https://github.com/elastic/elasticsearch/commit/cd97b8566bf56e628070021300784cb9cee0286f
https://github.com/elastic/elasticsearch/commit/d8a408da79f214395845d99d241e832077045983
https://github.com/elastic/elasticsearch/commit/e519fe4c51a3c887675eb7daea2f914738847f23
https://nvd.nist.gov/vuln/detail/CVE-2025-37731
https://www.cve.org/CVERecord?id=CVE-2025-37731
|
| org.lz4:lz4-java |
CVE-2025-12183 |
HIGH |
1.8.0 |
1.8.1 |
http://www.openwall.com/lists/oss-security/2025/12/01/5
https://access.redhat.com/security/cve/CVE-2025-12183
https://github.com/yawkat/lz4-java
https://github.com/yawkat/lz4-java/releases/tag/v1.8.1
https://nvd.nist.gov/vuln/detail/CVE-2025-12183
https://sites.google.com/sonatype.com/vulnerabilities/cve-2025-12183
https://www.cve.org/CVERecord?id=CVE-2025-12183
https://www.sonatype.com/security-advisories/cve-2025-12183
|
| org.lz4:lz4-java |
CVE-2025-66566 |
HIGH |
1.8.0 |
|
https://access.redhat.com/errata/RHSA-2026:0752
https://access.redhat.com/security/cve/CVE-2025-66566
https://bugzilla.redhat.com/2419500
https://errata.almalinux.org/9/ALSA-2026-0752.html
https://github.com/yawkat/lz4-java
https://github.com/yawkat/lz4-java/commit/33d180cb70c4d93c80fb0dc3ab3002f457e93840
https://github.com/yawkat/lz4-java/security/advisories/GHSA-cmp6-m4wj-q63q
https://linux.oracle.com/cve/CVE-2025-66566.html
https://linux.oracle.com/errata/ELSA-2026-0752.html
https://nvd.nist.gov/vuln/detail/CVE-2025-66566
https://www.cve.org/CVERecord?id=CVE-2025-66566
|
| No Misconfigurations found |