logo

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

1

Maven

Total vulnerabilities tracked

14

From global vulnerability databases

Exclude malware
Package org.opens...security

FLAT-ETYBG (GHSA-x5hg-x4gv-j98m)

Insecure digital certificates In org.opensearch.plugin:opensearch-security

3.7

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-GLVF7 (GHSA-x83w-23jp-g6pw)

Authentication mechanism absence or evasion In org.opensearch.plugin:opensearch-security

2.3

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-YHHAK (GHSA-22vx-2x23-98w6)

Authentication mechanism absence or evasion In org.opensearch.plugin:opensearch-security

0.5

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-7PJD9 (GHSA-83x9-vc3c-hghc)

Authentication mechanism absence or evasion In org.opensearch.plugin:opensearch-security

1.7

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-LWNYS (GHSA-2rjv-cv85-xhgm)

Unauthorized access to screen In org.opensearch.plugin:opensearch-security

4.6

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-NX9MA (GHSA-rrmm-wq7q-h4v5)

Business information leak In org.opensearch.plugin:opensearch-security

4.3

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-X8TDX (CVE-2023-45807)

Excessive privileges In org.opensearch.plugin:opensearch-security

1.3

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-2CYIL (GHSA-8wx3-324g-w4qq)

Asymmetric denial of service In org.opensearch.plugin:opensearch-security

6.6

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-31YFO (CVE-2023-31141)

Authentication mechanism absence or evasion In org.opensearch.plugin:opensearch-security

4.6

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-0AO1G (CVE-2022-41918)

Authentication mechanism absence or evasion In org.opensearch.plugin:opensearch-security

1.3

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-D0GDS (CVE-2023-25806)

User enumeration In org.opensearch.plugin:opensearch-security

2.7

Low

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-1JW3Y (CVE-2023-23613)

Business information leak In org.opensearch.plugin:opensearch-security

4.6

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-2ECQT (CVE-2023-23612)

Improper authorization control for web services In org.opensearch.plugin:opensearch-security

5.2

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security

FLAT-GLJ51 (CVE-2022-35980)

Missing subresource integrity check In org.opensearch.plugin:opensearch-security

6.6

Medium

Ecosystem: Maven

Package: org.opensearch.plugin:opensearch-security