Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2021-39168 Vulnerability in npm package @openzeppelin/contracts-upgradeable CWE-269 CWE-269 Critical CVE-2021-39177 Vulnerability in maven package org.geysermc:connector CWE-287 CWE-287 Critical CVE-2021-39184 Vulnerability in npm package electron CWE-862 CWE-862 Critical CVE-2021-39185 Vulnerability in maven package org.http4s:http4s-server CWE-346 CWE-346 Critical CVE-2021-39227 Vulnerability in npm package zrender CWE-1321 CWE-1321 Critical CVE-2021-39231 Vulnerability in maven package org.apache.ozone:ozone-main CWE-862 CWE-862 Critical CVE-2021-39232 Vulnerability in maven package org.apache.ozone:ozone-main CWE-862 CWE-862 Critical CVE-2021-39233 Vulnerability in maven package org.apache.ozone:ozone-main Critical CVE-2021-39236 Vulnerability in maven package org.apache.ozone:ozone-main CWE-862 CWE-862 Critical CVE-2021-40143 Vulnerability in maven package org.sonatype.nexus:nexus-repository CWE-74 CWE-74 Critical CVE-2021-40146 Vulnerability in maven package org.apache.any23:apache-any23-core Critical CVE-2021-40331 Vulnerability in maven package org.apache.ranger:ranger-hive-plugin CWE-732 CWE-732 Critical CVE-2021-40525 Vulnerability in maven package org.apache.james:james-server CWE-22 CWE-22 Critical CVE-2021-40663 Vulnerability in npm package deep.assign CWE-1321 CWE-1321 Critical CVE-2021-40828 Vulnerability in npm package aws-iot-device-sdk-v2 CWE-295 CWE-295 Critical CVE-2021-40830 Vulnerability in maven package software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk CWE-295 CWE-295 Critical CVE-2021-40865 Vulnerability in maven package org.apache.storm:storm-server CWE-502 CWE-502 Critical CVE-2021-41117 Vulnerability in npm package keypair CWE-335 CWE-335 Critical CVE-2021-41193 Vulnerability in maven package com.wire:avs CWE-134 CWE-134 Critical CVE-2021-41246 Vulnerability in npm package express-openid-connect CWE-384 CWE-384 Critical CVE-2021-41269 Vulnerability in maven package com.cronutils:cron-utils CWE-94 CWE-94 Critical CVE-2021-41303 Vulnerability in maven package org.apache.shiro:shiro-core Critical CVE-2021-41411 Vulnerability in maven package org.drools:drools-core CWE-611 CWE-611 Critical CVE-2021-41616 Vulnerability in maven package org.apache.ddlutils:ddlutils CWE-502 CWE-502 Critical CVE-2021-41766 Vulnerability in maven package org.apache.karaf:apache-karaf CWE-502 CWE-502 Critical CVE-2021-41862 Vulnerability in maven package com.googlecode.aviator:aviator CWE-74 CWE-74 Critical CVE-2021-42010 Vulnerability in maven package org.apache.heron:heron-api CWE-116 CWE-116 Critical CVE-2021-42228 Vulnerability in npm package kindeditor CWE-352 CWE-352 Critical CVE-2021-42392 Vulnerability in maven package com.h2database:h2 CWE-502 CWE-502 Critical CVE-2021-42575 Vulnerability in maven package com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer Critical CVE-2021-42767 Vulnerability in maven package org.neo4j.procedure:apoc CWE-22 CWE-22 Critical CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-core CWE-611 CWE-611 Critical CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-parent CWE-611 CWE-611 Critical CVE-2021-43116 Vulnerability in maven package com.alibaba.nacos:nacos-client CWE-287 CWE-287 Critical CVE-2021-43142 Vulnerability in maven package com.wutka:jox CWE-611 CWE-611 Critical CVE-2021-43297 Vulnerability in maven package com.alibaba:hessian-lite CWE-502 CWE-502 Critical CVE-2021-43466 Vulnerability in maven package org.thymeleaf:thymeleaf-spring5 CWE-94 CWE-94 Critical CVE-2021-43570 Vulnerability in maven package com.starkbank.ellipticcurve:starkbank-ecdsa CWE-347 CWE-347 Critical CVE-2021-43571 Vulnerability in npm package starkbank-ecdsa CWE-347 CWE-347 Critical CVE-2021-43783 Vulnerability in npm package @backstage/plugin-scaffolder-backend CWE-22 CWE-22 Critical CVE-2021-44140 Vulnerability in maven package org.apache.jspwiki:jspwiki-main CWE-276 CWE-276 Critical CVE-2021-44228 Vulnerability in maven package org.apache.logging.log4j:log4j-core CWE-20 CWE-20 Critical CVE-2021-44521 Vulnerability in maven package org.apache.cassandra:cassandra-all CWE-732 CWE-732 Critical CVE-2021-44548 Vulnerability in maven package org.apache.solr:solr-core CWE-22 CWE-22 Critical CVE-2021-44550 Vulnerability in maven package edu.stanford.nlp:stanford-corenlp CWE-74 CWE-74 Critical CVE-2021-44684 Vulnerability in npm package github-todos CWE-78 CWE-78 Critical CVE-2021-44868 Vulnerability in maven package net.mingsoft:ms-mcms CWE-89 CWE-89 Critical CVE-2021-44906 Vulnerability in maven package org.webjars.bowergithub.substack:minimist CWE-1321 CWE-1321 Critical CVE-2021-44906 Vulnerability in maven package org.webjars.npm:minimist CWE-1321 CWE-1321 Critical CVE-2021-44906 Vulnerability in npm package minimist CWE-1321 CWE-1321 Critical CVE-2021-44908 Vulnerability in npm package sails CWE-1321 CWE-1321 Critical CVE-2021-45029 Vulnerability in maven package org.apache.shenyu:shenyu-common CWE-94 CWE-94 Critical CVE-2021-45046 Vulnerability in maven package org.apache.logging.log4j:log4j-core CWE-917 CWE-917 Critical CVE-2021-45456 Vulnerability in maven package org.apache.kylin:kylin-server-base CWE-77 CWE-77 Critical CVE-2021-45459 Vulnerability in npm package node-windows CWE-77 CWE-77 Critical CVE-2021-46036 Vulnerability in maven package net.mingsoft:ms-mcms CWE-434 CWE-434 Critical CVE-2021-46037 Vulnerability in maven package net.mingsoft:ms-mcms Critical CVE-2021-46063 Vulnerability in maven package net.mingsoft:ms-mcms CWE-94 CWE-94 Critical CVE-2021-46089 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base-core CWE-89 CWE-89 Critical CVE-2021-46361 Vulnerability in maven package info.magnolia:magnolia-core Critical CVE-2021-46366 Vulnerability in maven package info.magnolia:magnolia-core CWE-352 CWE-352 Critical CVE-2021-46384 Vulnerability in maven package net.mingsoft:ms-mcms CWE-306 CWE-306 Critical CVE-2021-46704 Vulnerability in npm package genieacs CWE-78 CWE-78 Critical CVE-2022-0086 Vulnerability in npm package uppy CWE-918 CWE-918 Critical CVE-2022-0239 Vulnerability in maven package edu.stanford.nlp:stanford-corenlp CWE-611 CWE-611 Critical CVE-2022-0265 Vulnerability in maven package com.hazelcast:hazelcast CWE-611 CWE-611 Critical CVE-2022-0272 Vulnerability in maven package io.gitlab.arturbosch.detekt:detekt-core CWE-611 CWE-611 Critical CVE-2022-0401 Vulnerability in npm package w-zip CWE-22 CWE-22 Critical CVE-2022-0671 Vulnerability in maven package org.eclipse.lemminx:lemminx-parent CWE-400 CWE-400 Critical CVE-2022-0686 Vulnerability in npm package url-parse CWE-639 CWE-639 Critical CVE-2022-0691 Vulnerability in npm package url-parse CWE-639 CWE-639 Critical CVE-2022-0748 Vulnerability in npm package post-loader CWE-79 CWE-79 Critical CVE-2022-0839 Vulnerability in maven package org.liquibase:liquibase-core CWE-611 CWE-611 Critical CVE-2022-0841 Vulnerability in npm package npm-lockfile CWE-78 CWE-78 Critical CVE-2022-1245 Vulnerability in maven package org.keycloak:keycloak-services CWE-639 CWE-639 Critical 1...35363738...47 36 / 47
