OSV - Open Source Vulnerabilities

GHSA-4xx7-2cx3-x473

Maven/org.keycloak:keycloak-saml-core

Keycloak SAML signature validation flaw

2 hours ago

Fix available
Severity - 5.3 (Medium)

GHSA-vvf8-2h68-9475

Maven/org.keycloak:keycloak-services

Keycloak Open Redirect vulnerability

2 hours ago

Fix available
Severity - 7.7 (High)

GHSA-w69q-w4h4-2fx8

PyPI/dm-reverb
PyPI/dm-reverb-nightly

Reverb use after free vulnerability

2 hours ago

No fix available
Severity - 5.7 (Medium)

MAL-2024-8912

Not specified

Malicious code in infosnap-secure-family-portal (npm)

3 hours ago

No fix available

GHSA-84jw-g43v-8gjm

npm/@rspack/core

DOM Clobbering Gadget found in Rspack's AutoPublicPathRuntimeModule that leads to XSS

3 hours ago

Fix available
Severity - 6.3 (Medium)

CGA-52gg-hc9x-qf6q

Chainguard/kdash
Wolfi/kdash

See record for full details

4 hours ago

Fix available

GHSA-jj94-6f5c-65r8

Go/github.com/zitadel/zitadel/v2

ZITADEL Allows Unauthorized Access After Organization or Project Deactivation

5 hours ago

Fix available
Severity - 7.4 (High)

GHSA-qr2h-7pwm-h393

Go/github.com/zitadel/zitadel/v2

ZITADEL's Service Users Deactivation not Working

5 hours ago

Fix available
Severity - 8.6 (High)

GHSA-2w5j-qfvw-2hf5

Go/github.com/zitadel/zitadel/v2

ZITADEL's User Grant Deactivation not Working

5 hours ago

Fix available
Severity - 7.4 (High)

CGA-gwfr-qgrm-vr8c

Chainguard/vault-fips-1.17
Chainguard/vault-fips-1.17-compat

See record for full details

5 hours ago

Fix available

CGA-9crj-j7xh-qwqc

Chainguard/vault-fips-1.17
Chainguard/vault-fips-1.17-compat

See record for full details

5 hours ago

Fix available

CGA-vcr6-jgxp-5cf8

Chainguard/vault-fips-1.17
Chainguard/vault-fips-1.17-compat

See record for full details

5 hours ago

Fix available

GHSA-735f-pc8j-v9w8

Maven/com.google.protobuf:protobuf-java
Maven/com.google.protobuf:protobuf-javalite
Maven/com.google.protobuf:protobuf-kotlin
Maven/com.google.protobuf:protobuf-kotlin-lite
RubyGems/google-protobuf

protobuf-java has potential Denial of Service issue

5 hours ago

Fix available
Severity - 8.7 (High)

USN-7015-2

Ubuntu:Pro:16.04:LTS/python2.7
Ubuntu:Pro:16.04:LTS/python3.5
Ubuntu:Pro:18.04:LTS/python2.7
Ubuntu:Pro:20.04:LTS/python2.7
Ubuntu:Pro:22.04:LTS/python2.7

python2.7, python3.5 vulnerabilities

5 hours ago

Fix available

GHSA-68j8-fp38-p48q

Maven/de.gematik.refv.commons:commons

Gematik Referenzvalidator has an XXE vulnerability that can lead to a Server Side Request Forgery attack

6 hours ago

Fix available
Severity - 7.8 (High)

GHSA-c459-2m73-67hj

Maven/com.alipay.sofa:hessian

SOFA Hessian Remote Command Execution (RCE) Vulnerability

6 hours ago

Fix available
Severity - 8.1 (High)