Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2011-2487 Vulnerability in maven package org.apache.cxf:cxf CWE-327 CWE-327 Medium CVE-2011-2487 Vulnerability in maven package org.apache.ws.security:wss4j CWE-327 CWE-327 Medium CVE-2012-5783 Vulnerability in maven package commons-httpclient:commons-httpclient CWE-295 CWE-295 Critical CVE-2012-5784 Vulnerability in maven package axis:axis CWE-20 CWE-20 Critical CVE-2012-5784 Vulnerability in maven package org.apache.axis:axis CWE-20 CWE-20 Critical CVE-2015-1835 Vulnerability in npm package cordova-android CWE-20 CWE-20 Medium CVE-2015-5211 Vulnerability in maven package org.springframework:spring-web CWE-552 CWE-552 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-ext-jdk14 CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-ext-jdk15on CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk14 CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk15 CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk15on CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk16 CWE-310 CWE-310 Critical CVE-2016-2402 Vulnerability in maven package com.squareup.okhttp3:okhttp CWE-295 CWE-295 Medium CVE-2016-2402 Vulnerability in maven package com.squareup.okhttp:okhttp CWE-295 CWE-295 Medium CVE-2016-4978 Vulnerability in maven package org.apache.activemq:artemis-jms-client CWE-502 CWE-502 High CVE-2016-6497 Vulnerability in maven package org.xbib.groovy:groovy-ldap CWE-254 CWE-254 High CVE-2016-8749 Vulnerability in maven package org.apache.camel:camel-jackson CWE-502 CWE-502 Critical CVE-2016-8749 Vulnerability in maven package org.apache.camel:camel-jacksonxml CWE-502 CWE-502 Critical CVE-2017-5638 Vulnerability in maven package org.apache.struts:struts2-core CWE-20 CWE-20 Critical CVE-2017-5858 Vulnerability in npm package converse.js CWE-20 CWE-20 Medium CVE-2017-11429 Vulnerability in npm package saml2-js CWE-287 CWE-287 Critical CVE-2017-1000228 Vulnerability in maven package org.webjars.npm:ejs CWE-20 CWE-20 Critical CVE-2017-1000228 Vulnerability in npm package ejs CWE-20 CWE-20 Critical CVE-2018-3712 Vulnerability in npm package serve CWE-22 CWE-22 High CVE-2018-12022 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 High CVE-2018-12023 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 High CVE-2018-13863 Vulnerability in maven package org.webjars.npm:bson High CVE-2018-13863 Vulnerability in npm package bson High CVE-2018-17145 Vulnerability in npm package bcoin CWE-400 CWE-400 High CVE-2019-0232 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-78 CWE-78 Critical CVE-2019-0232 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-78 CWE-78 Critical CVE-2020-7662 Vulnerability in npm package websocket-extensions High CVE-2020-7744 Vulnerability in maven package com.mintegral.msdk:alphab CWE-319 CWE-319 Medium CVE-2020-8441 Vulnerability in maven package org.jyaml:jyaml CWE-502 CWE-502 Critical CVE-2020-8913 Vulnerability in maven package com.google.android.play:core CWE-22 CWE-22 Critical CVE-2020-13410 Vulnerability in npm package aedes CWE-755 CWE-755 High CVE-2020-35490 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-35491 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36179 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36180 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36181 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36182 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36183 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36184 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36185 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36186 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36187 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36188 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36189 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.avmfritz CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles: org.openhab.binding.bosesoundtouch CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.enigma2 CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.gce CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.homematic CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.hpprinter CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.ihc CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.insteon CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.samsungtv CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.sonos CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.tellstick CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.vitotronic CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.yamahareceiver CWE-611 CWE-611 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.transform.xpath CWE-611 CWE-611 Medium CVE-2021-42392 Vulnerability in maven package com.h2database:h2 CWE-502 CWE-502 Critical CVE-2022-26969 Vulnerability in npm package directus Critical CVE-2022-31053 Vulnerability in maven package com.clever-cloud:biscuit-java CWE-347 CWE-347 Critical CVE-2022-37616 Vulnerability in maven package org.webjars.npm:xmldom CWE-1321 CWE-1321 Critical CVE-2022-37616 Vulnerability in maven package org.webjars.npm:xmldom__xmldom CWE-1321 CWE-1321 Critical CVE-2022-37616 Vulnerability in npm package @xmldom/xmldom CWE-1321 CWE-1321 Critical CVE-2022-37616 Vulnerability in npm package xmldom CWE-1321 CWE-1321 Critical CVE-2022-40764 Vulnerability in npm package snyk CWE-78 CWE-78 High CVE-2022-40764 Vulnerability in npm package snyk-go-plugin CWE-78 CWE-78 High CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-csrf-reactive CWE-863 CWE-863 Critical CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-keycloak-authorization CWE-863 CWE-863 Critical CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-undertow CWE-863 CWE-863 Critical CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-vertx-http CWE-863 CWE-863 Critical CVE-2023-22899 Vulnerability in maven package net.lingala.zip4j:zip4j CWE-346 CWE-346 Medium CVE-2023-25653 Vulnerability in maven package org.webjars.npm:node-jose CWE-835 CWE-835 High CVE-2023-25653 Vulnerability in npm package node-jose CWE-835 CWE-835 High CVE-2023-26048 Vulnerability in maven package org.eclipse.jetty:jetty-server CWE-400 CWE-400 Medium CVE-2023-26049 Vulnerability in maven package org.eclipse.jetty:jetty-http CWE-200 CWE-200 Medium CVE-2023-26049 Vulnerability in maven package org.eclipse.jetty:jetty-server CWE-200 CWE-200 Medium CVE-2023-26113 Vulnerability in npm package collection.js CWE-1321 CWE-1321 High CVE-2023-26120 Vulnerability in maven package com.xuxueli:xxl-job CWE-79 CWE-79 High CVE-2023-26136 Vulnerability in maven package org.webjars.bowergithub.salesforce:tough-cookie CWE-1321 CWE-1321 Critical CVE-2023-26136 Vulnerability in maven package org.webjars.npm:tough-cookie CWE-1321 CWE-1321 Critical CVE-2023-26136 Vulnerability in npm package tough-cookie CWE-1321 CWE-1321 Critical CVE-2023-28155 Vulnerability in maven package org.webjars.bower:request CWE-918 CWE-918 High CVE-2023-28155 Vulnerability in maven package org.webjars.npm:request CWE-918 CWE-918 High CVE-2023-28155 Vulnerability in maven package org.webjars:request CWE-918 CWE-918 High CVE-2023-28155 Vulnerability in npm package request CWE-918 CWE-918 High CVE-2023-29019 Vulnerability in npm package @fastify/passport CWE-384 CWE-384 Critical CVE-2023-29020 Vulnerability in npm package @fastify/passport CWE-352 CWE-352 High CVE-2023-30363 Vulnerability in npm package vconsole CWE-1321 CWE-1321 Critical CVE-2023-35162 Vulnerability in maven package org.xwiki.platform:xwiki-platform-flamingo-skin-resources CWE-79 CWE-79 High CVE-2023-40167 Vulnerability in maven package org.eclipse.jetty:jetty-http CWE-130 CWE-130 Medium CVE-2023-44487 Vulnerability in maven package io.helidon.http:helidon-http-http2 CWE-400 CWE-400 High CVE-2023-44487 Vulnerability in maven package io.netty:netty-codec-http2 CWE-400 CWE-400 High CVE-2023-44487 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-400 CWE-400 High CVE-2023-44487 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-400 CWE-400 High CVE-2023-44487 Vulnerability in maven package org.eclipse.jetty.http2:http2-common CWE-400 CWE-400 High CVE-2023-45669 Vulnerability in maven package com.webauthn4j:webauthn4j-spring-security-core CWE-287 CWE-287 Medium CVE-2023-48309 Vulnerability in npm package next-auth CWE-285 CWE-285 Medium
