pkg:maven/org.http4s/http4s-server
Type
maven
Namespace
org.http4s
Name
http4s-server
Known advisories, vulnerabilities and fixes for org.http4s/http4s-server package.
Critical
1
High
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | >= 0.23.0, < 0.23.2 >= 0.22.0, < 0.22.3 < 0.21.27 |
CVE-2021-39185
|
MAVEN:GHSA-52CF-226F-RHR6 | Default CORS config allows any origin with credentials | critical |
2021-09-02T16:52:18
(3 years ago) |
|
Fixed | = 0.23.2 = 0.22.3 = 0.21.27 |
CVE-2021-39185
|
MAVEN:GHSA-52CF-226F-RHR6 | Default CORS config allows any origin with credentials | critical |
2021-09-02T16:52:18
(3 years ago) |
|
Affected | >= 0.23.0, <= 0.23.3 >= 0.22.0, <= 0.22.4 <= 0.21.28 |
CVE-2021-41084
|
MAVEN:GHSA-5VCM-3XC3-W7X3 | Response Splitting from unsanitized headers | high |
2021-09-22T19:18:41
(3 years ago) |
|
Fixed | = 0.23.4 = 0.22.5 = 0.21.29 |
CVE-2021-41084
|
MAVEN:GHSA-5VCM-3XC3-W7X3 | Response Splitting from unsanitized headers | high |
2021-09-22T19:18:41
(3 years ago) |