Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2011-2487 Vulnerability in maven package org.apache.cxf:cxf CWE-327 CWE-327 Medium CVE-2011-2487 Vulnerability in maven package org.apache.ws.security:wss4j CWE-327 CWE-327 Medium CVE-2012-5783 Vulnerability in maven package commons-httpclient:commons-httpclient CWE-295 CWE-295 Critical CVE-2012-5784 Vulnerability in maven package axis:axis CWE-20 CWE-20 Critical CVE-2012-5784 Vulnerability in maven package org.apache.axis:axis CWE-20 CWE-20 Critical CVE-2015-1835 Vulnerability in npm package cordova-android CWE-20 CWE-20 Medium CVE-2015-5211 Vulnerability in maven package org.springframework:spring-web CWE-552 CWE-552 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-ext-jdk14 CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-ext-jdk15on CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk14 CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk15 CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk15on CWE-310 CWE-310 Critical CVE-2015-7940 Vulnerability in maven package org.bouncycastle:bcprov-jdk16 CWE-310 CWE-310 Critical CVE-2016-2402 Vulnerability in maven package com.squareup.okhttp3:okhttp CWE-295 CWE-295 Medium CVE-2016-2402 Vulnerability in maven package com.squareup.okhttp:okhttp CWE-295 CWE-295 Medium CVE-2016-4978 Vulnerability in maven package org.apache.activemq:artemis-jms-client CWE-502 CWE-502 High CVE-2016-6497 Vulnerability in maven package org.xbib.groovy:groovy-ldap CWE-254 CWE-254 High CVE-2016-8749 Vulnerability in maven package org.apache.camel:camel-jackson CWE-502 CWE-502 Critical CVE-2016-8749 Vulnerability in maven package org.apache.camel:camel-jacksonxml CWE-502 CWE-502 Critical CVE-2017-5858 Vulnerability in npm package converse.js CWE-20 CWE-20 Medium CVE-2017-11429 Vulnerability in npm package saml2-js CWE-287 CWE-287 Critical CVE-2017-1000228 Vulnerability in maven package org.webjars.npm:ejs CWE-20 CWE-20 Critical CVE-2017-1000228 Vulnerability in npm package ejs CWE-20 CWE-20 Critical CVE-2018-3712 Vulnerability in npm package serve CWE-22 CWE-22 High CVE-2018-12022 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 High CVE-2018-12023 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 High CVE-2018-13863 Vulnerability in maven package org.webjars.npm:bson High CVE-2018-13863 Vulnerability in npm package bson High CVE-2018-17145 Vulnerability in npm package bcoin CWE-400 CWE-400 High CVE-2019-0232 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-78 CWE-78 Critical CVE-2019-0232 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-78 CWE-78 Critical CVE-2020-7662 Vulnerability in npm package websocket-extensions High CVE-2020-7744 Vulnerability in maven package com.mintegral.msdk:alphab CWE-319 CWE-319 Critical CVE-2020-8441 Vulnerability in maven package org.jyaml:jyaml CWE-502 CWE-502 Critical CVE-2020-8913 Vulnerability in maven package com.google.android.play:core CWE-22 CWE-22 Critical CVE-2020-13410 Vulnerability in npm package aedes CWE-755 CWE-755 High CVE-2020-35490 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-35491 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36179 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36180 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36181 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36182 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36183 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36184 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36185 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36186 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36187 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36188 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2020-36189 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.avmfritz Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles: org.openhab.binding.bosesoundtouch Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.enigma2 Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.gce Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.homematic Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.hpprinter Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.ihc Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.insteon Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.samsungtv Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.sonos Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.tellstick Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.vitotronic Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.binding.yamahareceiver Medium CVE-2021-21266 Vulnerability in maven package org.openhab.addons.bundles:org.openhab.transform.xpath Medium CVE-2021-42392 Vulnerability in maven package com.h2database:h2 CWE-502 CWE-502 Critical CVE-2022-26969 Vulnerability in npm package directus Critical CVE-2022-31053 Vulnerability in maven package com.clever-cloud:biscuit-java Critical CVE-2022-37616 Vulnerability in maven package org.webjars.npm:xmldom CWE-1321 CWE-1321 Critical CVE-2022-37616 Vulnerability in maven package org.webjars.npm:xmldom__xmldom CWE-1321 CWE-1321 Critical CVE-2022-37616 Vulnerability in npm package @xmldom/xmldom CWE-1321 CWE-1321 Critical CVE-2022-37616 Vulnerability in npm package xmldom CWE-1321 CWE-1321 Critical CVE-2022-40764 Vulnerability in npm package snyk CWE-78 CWE-78 High CVE-2022-40764 Vulnerability in npm package snyk-go-plugin CWE-78 CWE-78 High CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-csrf-reactive CWE-863 CWE-863 Critical CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-keycloak-authorization CWE-863 CWE-863 Critical CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-undertow CWE-863 CWE-863 Critical CVE-2023-4853 Vulnerability in maven package io.quarkus:quarkus-vertx-http CWE-863 CWE-863 Critical CVE-2023-22899 Vulnerability in maven package net.lingala.zip4j:zip4j CWE-346 CWE-346 Medium CVE-2023-25653 Vulnerability in maven package org.webjars.npm:node-jose CWE-835 CWE-835 High CVE-2023-25653 Vulnerability in npm package node-jose CWE-835 CWE-835 High CVE-2023-26048 Vulnerability in maven package org.eclipse.jetty:jetty-server Medium CVE-2023-26049 Vulnerability in maven package org.eclipse.jetty:jetty-http Medium CVE-2023-26049 Vulnerability in maven package org.eclipse.jetty:jetty-server Medium CVE-2023-26113 Vulnerability in npm package collection.js CWE-1321 CWE-1321 High CVE-2023-26120 Vulnerability in maven package com.xuxueli:xxl-job CWE-79 CWE-79 High CVE-2023-26136 Vulnerability in maven package org.webjars.bowergithub.salesforce:tough-cookie CWE-1321 CWE-1321 Critical CVE-2023-26136 Vulnerability in maven package org.webjars.npm:tough-cookie CWE-1321 CWE-1321 Critical CVE-2023-26136 Vulnerability in npm package tough-cookie CWE-1321 CWE-1321 Critical CVE-2023-28155 Vulnerability in maven package org.webjars.bower:request CWE-918 CWE-918 High CVE-2023-28155 Vulnerability in maven package org.webjars.npm:request CWE-918 CWE-918 High CVE-2023-28155 Vulnerability in maven package org.webjars:request CWE-918 CWE-918 High CVE-2023-28155 Vulnerability in npm package request CWE-918 CWE-918 High CVE-2023-29019 Vulnerability in npm package @fastify/passport CWE-384 CWE-384 Critical CVE-2023-29020 Vulnerability in npm package @fastify/passport CWE-352 CWE-352 High CVE-2023-30363 Vulnerability in npm package vconsole CWE-1321 CWE-1321 Critical CVE-2023-35162 Vulnerability in maven package org.xwiki.platform:xwiki-platform-flamingo-skin-resources CWE-79 CWE-79 High CVE-2023-40167 Vulnerability in maven package org.eclipse.jetty:jetty-http Medium CVE-2023-44487 Vulnerability in maven package io.helidon.http:helidon-http-http2 High CVE-2023-44487 Vulnerability in maven package io.netty:netty-codec-http2 High CVE-2023-44487 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core High CVE-2023-44487 Vulnerability in maven package org.apache.tomcat:tomcat-coyote High CVE-2023-44487 Vulnerability in maven package org.eclipse.jetty.http2:http2-common High CVE-2023-45669 Vulnerability in maven package com.webauthn4j:webauthn4j-spring-security-core Medium CVE-2023-48309 Vulnerability in npm package next-auth Medium
