Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| DEBIAN-CVE-2026-49452 |
|
DEBIAN-CVE-2026-49452 |
| CVE-2026-5482 |
|
Unrestricted File Upload in CVE-2026-5482 (CVE-2026-5482)
vulnerability in CVE-2026-5482 (CVE-2026-5482). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49757 |
|
Vulnerability in ash_authentication (CVE-2026-49757)
vulnerability in ash_authentication (CVE-2026-49757). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.14.0, 5.0.0-rc.10` or later.
|
| CVE-2026-34030 |
|
Vulnerability in path-traversal (CVE-2026-34030)
vulnerability in path-traversal (CVE-2026-34030). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34029 |
|
Vulnerability in CVE-2026-34029 (CVE-2026-34029)
vulnerability in CVE-2026-34029 (CVE-2026-34029). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34028 |
|
Vulnerability in CVE-2026-34028 (CVE-2026-34028)
vulnerability in CVE-2026-34028 (CVE-2026-34028). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34027 |
|
Unrestricted File Upload in CVE-2026-34027 (CVE-2026-34027)
vulnerability in CVE-2026-34027 (CVE-2026-34027). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34026 |
|
Vulnerability in path-traversal (CVE-2026-34026)
vulnerability in path-traversal (CVE-2026-34026). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34025 |
|
Vulnerability in CVE-2026-34025 (CVE-2026-34025)
vulnerability in CVE-2026-34025 (CVE-2026-34025). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34024 |
|
Vulnerability in CVE-2026-34024 (CVE-2026-34024)
vulnerability in CVE-2026-34024 (CVE-2026-34024). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34023 |
|
Authorization Flaw in CVE-2026-34023 (CVE-2026-34023)
vulnerability in CVE-2026-34023 (CVE-2026-34023). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34022 |
|
Vulnerability in CVE-2026-34022 (CVE-2026-34022)
vulnerability in CVE-2026-34022 (CVE-2026-34022). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34021 |
|
Vulnerability in CVE-2026-34021 (CVE-2026-34021)
vulnerability in CVE-2026-34021 (CVE-2026-34021). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12057 |
|
Vulnerability in foxit (CVE-2026-12057)
vulnerability in foxit (CVE-2026-12057). Successful exploitation can lead to full system takeover.
|
| RXSA-2026:25121 |
|
Vulnerability in kernel (RXSA-2026:25121)
vulnerability in kernel (RXSA-2026:25121). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0:4.18.0-553.132.1.el8_10.cloud.0.1` or later.
|
| RLSA-2026:25919 |
|
Vulnerability in mecab-ipadic (RLSA-2026:25919)
vulnerability in mecab-ipadic (RLSA-2026:25919). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0:2.7.0.20070801-17.module+el8.10.0+2091+db4d14f6` or later.
|
| ROOT-APP-MAVEN-CVE-2019-14893 |
|
Vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2019-14893)
vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2019-14893). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.2-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2020-14061 |
|
Vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2020-14061)
vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2020-14061). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.2-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2020-11113 |
|
Vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2020-11113)
vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2020-11113). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.2-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2020-14062 |
|
Vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2020-14062)
vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2020-14062). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.2-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2019-14540 |
|
Vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2019-14540)
vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2019-14540). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.2-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2019-16943 |
|
Vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2019-16943)
vulnerability in io.root.com.fasterxml.jackson.core:jackson-databind (ROOT-APP-MAVEN-CVE-2019-16943). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.2-root.io.2` or later.
|
| ROOT-APP-GOBINARY-GHSA-xmrv-pmrh-hhx2 |
|
Vulnerability in rootio-github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs (ROOT-APP-GOBINARY-GHSA-xmrv-pmrh-hhx2)
vulnerability in rootio-github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs (ROOT-APP-GOBINARY-GHSA-xmrv-pmrh-hhx2). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `v1.63.0-root.io.1` or later.
|
| ROOT-OS-DEBIAN-12-CVE-2026-5435 |
|
Vulnerability in rootio-glibc (ROOT-OS-DEBIAN-12-CVE-2026-5435)
vulnerability in rootio-glibc (ROOT-OS-DEBIAN-12-CVE-2026-5435). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.36-9+deb12u14.root.io.19` or later.
|
| ROOT-OS-DEBIAN-12-CVE-2026-6238 |
|
Vulnerability in rootio-glibc (ROOT-OS-DEBIAN-12-CVE-2026-6238)
vulnerability in rootio-glibc (ROOT-OS-DEBIAN-12-CVE-2026-6238). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.36-9+deb12u14.root.io.19` or later.
|
| ECHO-06de-5a0f-cc51 |
|
ECHO-06de-5a0f-cc51 |
| ROOT-APP-MAVEN-CVE-2024-23944 |
|
Vulnerability in io.root.org.apache.zookeeper:zookeeper (ROOT-APP-MAVEN-CVE-2024-23944)
vulnerability in io.root.org.apache.zookeeper:zookeeper (ROOT-APP-MAVEN-CVE-2024-23944). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.8.4-root.io.1, 3.9.2-root.io.1, 3.9.2-root.io.2, 3.8.4-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2026-24281 |
|
Vulnerability in io.root.org.apache.zookeeper:zookeeper (ROOT-APP-MAVEN-CVE-2026-24281)
vulnerability in io.root.org.apache.zookeeper:zookeeper (ROOT-APP-MAVEN-CVE-2026-24281). Confidential information can be exposed externally. Mitigation: upgrade to `3.9.3-root.io.2, 3.9.2-root.io.1, 3.9.2-root.io.2, 3.8.4-root.io.2` or later.
|
| ROOT-APP-MAVEN-CVE-2026-24308 |
|
Vulnerability in io.root.org.apache.zookeeper:zookeeper (ROOT-APP-MAVEN-CVE-2026-24308)
vulnerability in io.root.org.apache.zookeeper:zookeeper (ROOT-APP-MAVEN-CVE-2026-24308). Confidential information can be exposed externally. Mitigation: upgrade to `3.8.4-root.io.1, 3.9.3-root.io.1, 3.9.3-root.io.2, 3.9.2-root.io.1, 3.9.2-root.io.2, 3.8.4-root.io.2` or later.
|
| CVE-2026-44188 |
|
Vulnerability in CVE-2026-44188 (CVE-2026-44188)
vulnerability in CVE-2026-44188 (CVE-2026-44188). Confidential information can be exposed externally.
|
| CVE-2026-11860 |
|
Code Injection in deserialization (CVE-2026-11860)
code injection in deserialization (CVE-2026-11860). Risk of unauthorized operations or information disclosure.
|
| RHSA-2026:25918 |
|
Red Hat Security Advisory: webkit2gtk3 security update
Red Hat Security Advisory: webkit2gtk3 security update
|
| RHSA-2026:25919 |
|
Red Hat Security Advisory: mysql:8.0 security update
Red Hat Security Advisory: mysql:8.0 security update
|
| RHSA-2026:25910 |
|
Red Hat Security Advisory: libtiff security update
Red Hat Security Advisory: libtiff security update
|
| RHSA-2026:25911 |
|
Red Hat Security Advisory: libssh security update
Red Hat Security Advisory: libssh security update
|
| RHSA-2026:25908 |
|
Red Hat Security Advisory: kernel security update
Red Hat Security Advisory: kernel security update
|
| RHSA-2026:25902 |
|
Red Hat Security Advisory: fence-agents security update
Red Hat Security Advisory: fence-agents security update
|
| RHSA-2026:25907 |
|
Red Hat Security Advisory: gimp security update
Red Hat Security Advisory: gimp security update
|
| RHSA-2026:25900 |
|
Red Hat Security Advisory: systemd security update
Red Hat Security Advisory: systemd security update
|
| RHSA-2026:25901 |
|
Red Hat Security Advisory: gimp security update
Red Hat Security Advisory: gimp security update
|
| RHSA-2026:25899 |
|
Red Hat Security Advisory: gimp security update
Red Hat Security Advisory: gimp security update
|
| ROOT-APP-MAVEN-CVE-2026-32990 |
|
Vulnerability in io.root.org.apache.tomcat.embed:tomcat-embed-core (ROOT-APP-MAVEN-CVE-2026-32990)
vulnerability in io.root.org.apache.tomcat.embed:tomcat-embed-core (ROOT-APP-MAVEN-CVE-2026-32990). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.20-root.io.1, 11.0.20-root.io.6, 11.0.20-root.io.7, 11.0.20-root.io.8, 11.0.20-root.io.9, 10.1.53-root.io.3, 10.1.53-root.io.4, 11.0.20-root.io.10, 10.1.53-root.io.5, 10.1.53-root.io.6, 11.0.20-root.io.11, 10.1.53-root.io.7, 10.1.53-root.io.8, 10.1.53-root.io.1781516532` or later.
|
| ROOT-APP-MAVEN-CVE-2026-29129 |
|
Vulnerability in io.root.org.apache.tomcat.embed:tomcat-embed-core (ROOT-APP-MAVEN-CVE-2026-29129)
vulnerability in io.root.org.apache.tomcat.embed:tomcat-embed-core (ROOT-APP-MAVEN-CVE-2026-29129). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.0.20-root.io.1, 11.0.20-root.io.6, 11.0.20-root.io.7, 11.0.20-root.io.8, 11.0.20-root.io.9, 10.1.53-root.io.3, 10.1.53-root.io.4, 11.0.20-root.io.10, 10.1.53-root.io.5, 10.1.53-root.io.6, 11.0.20-root.io.11, 10.1.53-root.io.7, 10.1.53-root.io.8, 10.1.53-root.io.1781516532` or later.
|
| ROOT-APP-MAVEN-CVE-2022-46337 |
|
Vulnerability in io.root.org.apache.derby:derby (ROOT-APP-MAVEN-CVE-2022-46337)
vulnerability in io.root.org.apache.derby:derby (ROOT-APP-MAVEN-CVE-2022-46337). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `10.14.2.0-root.io.1, 10.16.1.1-root.io.1, 10.16.1.1-root.io.1781516531` or later.
|
| ROOT-APP-MAVEN-CVE-2024-29371 |
|
Vulnerability in io.root.org.bitbucket.b_c:jose4j (ROOT-APP-MAVEN-CVE-2024-29371)
vulnerability in io.root.org.bitbucket.b_c:jose4j (ROOT-APP-MAVEN-CVE-2024-29371). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.4-root.io.1, 0.9.4-root.io.1781516533` or later.
|
| ROOT-APP-MAVEN-CVE-2023-51775 |
|
Vulnerability in io.root.org.bitbucket.b_c:jose4j (ROOT-APP-MAVEN-CVE-2023-51775)
vulnerability in io.root.org.bitbucket.b_c:jose4j (ROOT-APP-MAVEN-CVE-2023-51775). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.4-root.io.1, 0.9.4-root.io.1781516533` or later.
|
| ROOT-APP-MAVEN-CVE-2023-43642 |
|
Vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-43642)
vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-43642). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.1.10.1-root.io.1, 1.1.10.1-root.io.1781516528` or later.
|
| ROOT-APP-MAVEN-CVE-2023-34453 |
|
Vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-34453)
vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-34453). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.1.10.1-root.io.1, 1.1.10.1-root.io.1781516528` or later.
|
| ROOT-APP-MAVEN-CVE-2023-34454 |
|
Vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-34454)
vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-34454). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.1.10.1-root.io.1, 1.1.10.1-root.io.1781516528` or later.
|
| ROOT-APP-MAVEN-CVE-2023-34455 |
|
Vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-34455)
vulnerability in io.root.org.xerial.snappy:snappy-java (ROOT-APP-MAVEN-CVE-2023-34455). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.1.10.0-root.io.1, 1.1.10.1-root.io.1, 1.1.10.1-root.io.1781516528` or later.
|