Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: package-ecosystems Clear
ID Title
CVE-2021-2341 Vulnerability in java (CVE-2021-2341)
vulnerability in java (CVE-2021-2341). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.311, 8.0.301, 11.0.12, 16.0.2` or later.
CVE-2021-2163 Vulnerability in java (CVE-2021-2163)
vulnerability in java (CVE-2021-2163). Data can be tampered with by attackers. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.301, 8.0.291, 11.0.11, 16.0.1` or later.
CVE-2020-2830 Vulnerability in java (CVE-2020-2830)
vulnerability in java (CVE-2020-2830). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2803 Vulnerability in java (CVE-2020-2803)
vulnerability in java (CVE-2020-2803). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2800 Vulnerability in java (CVE-2020-2800)
vulnerability in java (CVE-2020-2800). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2781 Vulnerability in java (CVE-2020-2781)
vulnerability in java (CVE-2020-2781). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2778 Vulnerability in java (CVE-2020-2778)
vulnerability in java (CVE-2020-2778). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.7, 14.0.1` or later.
CVE-2020-2773 Vulnerability in java (CVE-2020-2773)
vulnerability in java (CVE-2020-2773). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2767 Vulnerability in java (CVE-2020-2767)
vulnerability in java (CVE-2020-2767). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.7, 14.0.1` or later.
CVE-2020-2757 Vulnerability in java (CVE-2020-2757)
vulnerability in java (CVE-2020-2757). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2756 Vulnerability in java (CVE-2020-2756)
vulnerability in java (CVE-2020-2756). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.261, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2755 Vulnerability in java (CVE-2020-2755)
vulnerability in java (CVE-2020-2755). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2754 Vulnerability in java (CVE-2020-2754)
vulnerability in java (CVE-2020-2754). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.251, 11.0.7, 14.0.1` or later.
CVE-2020-2659 Vulnerability in java (CVE-2020-2659)
vulnerability in java (CVE-2020-2659). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241` or later.
CVE-2020-2655 Vulnerability in java (CVE-2020-2655)
vulnerability in java (CVE-2020-2655). Risk of unauthorized operations or information disclosure.
CVE-2020-2604 Vulnerability in java (CVE-2020-2604)
vulnerability in java (CVE-2020-2604). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241, 11.0.6, 13.0.2` or later.
CVE-2020-2601 Vulnerability in java (CVE-2020-2601)
vulnerability in java (CVE-2020-2601). Confidential information can be exposed externally. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241, 11.0.6, 13.0.2` or later.
CVE-2020-2593 Vulnerability in java (CVE-2020-2593)
vulnerability in java (CVE-2020-2593). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241, 11.0.6, 13.0.2` or later.
CVE-2020-2585 Vulnerability in java (CVE-2020-2585)
vulnerability in java (CVE-2020-2585). Data can be tampered with by attackers. Mitigation: upgrade to `1.8.0, 8.0.241` or later.
CVE-2020-2583 Vulnerability in java (CVE-2020-2583)
vulnerability in java (CVE-2020-2583). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.251, 8.0.241, 11.0.6, 13.0.2` or later.
CVE-2020-14803 Vulnerability in java (CVE-2020-14803)
vulnerability in java (CVE-2020-14803). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.9, 15.0.1` or later.
CVE-2020-14797 Vulnerability in java (CVE-2020-14797)
vulnerability in java (CVE-2020-14797). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.281, 8.0.271, 11.0.9, 15.0.1` or later.
CVE-2020-14782 Vulnerability in java (CVE-2020-14782)
vulnerability in java (CVE-2020-14782). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.281, 8.0.271, 11.0.9, 15.0.1` or later.
CVE-2020-14781 Vulnerability in java (CVE-2020-14781)
vulnerability in java (CVE-2020-14781). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.281, 8.0.271, 11.0.9, 15.0.1` or later.
CVE-2020-14779 Vulnerability in java (CVE-2020-14779)
vulnerability in java (CVE-2020-14779). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.281, 8.0.271, 11.0.9, 15.0.1` or later.
CVE-2020-14664 Vulnerability in java (CVE-2020-14664)
vulnerability in java (CVE-2020-14664). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.8.0, 8.0.261` or later.
CVE-2020-14621 Vulnerability in java (CVE-2020-14621)
vulnerability in java (CVE-2020-14621). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261, 11.0.8, 14.0.2` or later.
CVE-2020-14593 Vulnerability in java (CVE-2020-14593)
vulnerability in java (CVE-2020-14593). Data can be tampered with by attackers. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261, 11.0.8, 14.0.2` or later.
CVE-2020-14583 Vulnerability in java (CVE-2020-14583)
vulnerability in java (CVE-2020-14583). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261, 11.0.8, 14.0.2` or later.
CVE-2020-14581 Vulnerability in java (CVE-2020-14581)
vulnerability in java (CVE-2020-14581). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.261, 11.0.8, 14.0.2` or later.
CVE-2020-14579 Vulnerability in java (CVE-2020-14579)
vulnerability in java (CVE-2020-14579). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261` or later.
CVE-2020-14578 Vulnerability in java (CVE-2020-14578)
vulnerability in java (CVE-2020-14578). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261` or later.
CVE-2020-14577 Vulnerability in java (CVE-2020-14577)
vulnerability in java (CVE-2020-14577). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.0, 1.8.0, 7.0.271, 8.0.261, 11.0.8, 14.0.2` or later.
CVE-2020-14573 Vulnerability in java (CVE-2020-14573)
vulnerability in java (CVE-2020-14573). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.8, 14.0.2` or later.
CVE-2020-14562 Vulnerability in java (CVE-2020-14562)
vulnerability in java (CVE-2020-14562). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.8, 14.0.2` or later.
CVE-2020-14556 Vulnerability in java (CVE-2020-14556)
vulnerability in java (CVE-2020-14556). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.261, 11.0.8, 14.0.2` or later.
CVE-2026-35579 Authentication Bypass in github.com/coredns/coredns (CVE-2026-35579)
authentication bypass in github.com/coredns/coredns (CVE-2026-35579). Successful exploitation can lead to full system takeover. Exploitable via ``tsigStatus``. Mitigation: upgrade to `1.14.3` or later.
CVE-2026-39383 SSRF (Server-Side Request Forgery) in github.com/gotenberg/gotenberg/v8 (CVE-2026-39383)
SSRF in github.com/gotenberg/gotenberg/v8 (CVE-2026-39383). Confidential information can be exposed externally. Exploitable via ``FilterDeadline``. Mitigation: upgrade to `8.31.0` or later.
CVE-2026-39852 Authorization Flaw in io.quarkus:quarkus-vertx-http (CVE-2026-39852)
vulnerability in io.quarkus:quarkus-vertx-http (CVE-2026-39852). Confidential information can be exposed externally. Mitigation: upgrade to `3.35.1.1` or later.
CVE-2026-35397 Path Traversal in jupyter-server (CVE-2026-35397)
path traversal in jupyter-server (CVE-2026-35397). Successful exploitation can lead to full system takeover. Exploitable via ``root_dir``. Mitigation: upgrade to `2.18.0` or later.
CVE-2026-35453 Cross-Site Scripting (XSS) in phpoffice/phpspreadsheet (CVE-2026-35453)
cross-site scripting in phpoffice/phpspreadsheet (CVE-2026-35453). Risk of unauthorized operations or information disclosure. Exploitable via ``formatColor``. Mitigation: upgrade to `1.30.4` or later.
CVE-2026-34084 Unsafe Deserialization in phpoffice/phpspreadsheet (CVE-2026-34084)
vulnerability in phpoffice/phpspreadsheet (CVE-2026-34084). Successful exploitation can lead to full system takeover. Exploitable via ``is_file``. Mitigation: upgrade to `1.30.3` or later.
CVE-2026-32936 Vulnerability in github.com/coredns/coredns (CVE-2026-32936)
vulnerability in github.com/coredns/coredns (CVE-2026-32936). Risk of unauthorized operations or information disclosure. Exploitable via ``dns``. Mitigation: upgrade to `1.14.3` or later.
CVE-2026-33190 Authentication Bypass in github.com/coredns/coredns (CVE-2026-33190)
authentication bypass in github.com/coredns/coredns (CVE-2026-33190). Confidential information can be exposed externally. Mitigation: upgrade to `1.14.3` or later.
CVE-2026-33489 Vulnerability in github.com/coredns/coredns (CVE-2026-33489)
vulnerability in github.com/coredns/coredns (CVE-2026-33489). Confidential information can be exposed externally. Mitigation: upgrade to `1.14.3` or later.
CVE-2026-32934 Vulnerability in github.com/coredns/coredns (CVE-2026-32934)
vulnerability in github.com/coredns/coredns (CVE-2026-32934). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.14.3` or later.
CVE-2025-61669 Open Redirect in jupyter-server (CVE-2025-61669)
vulnerability in jupyter-server (CVE-2025-61669). Risk of unauthorized operations or information disclosure. Exploitable via ``google.com``. Mitigation: upgrade to `2.18.0` or later.
CVE-2026-26956 Vulnerability in vm2-project (CVE-2026-26956)
vulnerability in vm2-project (CVE-2026-26956). Successful exploitation can lead to full system takeover. Exploitable via ``catch``.
CVE-2026-24120 Code Injection in vm2-project (CVE-2026-24120)
code injection in vm2-project (CVE-2026-24120). Successful exploitation can lead to full system takeover. Exploitable via ``resetPromiseSpecies``.
CVE-2026-35527 SSRF (Server-Side Request Forgery) in github.com/lxc/incus/v6/cmd/incusd (CVE-2026-35527)
SSRF in github.com/lxc/incus/v6/cmd/incusd (CVE-2026-35527). Risk of unauthorized operations or information disclosure. Exploitable via ``restricted.images.servers``. Mitigation: upgrade to `7.0.0` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →