Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/com.typesafe.akka/akka-http-core_2.13@10.2.7
purl pkg:maven/com.typesafe.akka/akka-http-core_2.13@10.2.7
Next non-vulnerable version 10.5.3
Latest non-vulnerable version 10.5.3
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-5781-s1ny-q7ey
Aliases:
CVE-2023-44487
GHSA-2m7v-gc89-fjqf
GHSA-qppj-fm5r-hxr3
GHSA-vx74-f528-fxqg
GHSA-xpw8-rcwv-8f8p
GMS-2023-3377
VSV00013
10.5.3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-w7g1-y7u7-z3fg Out-of-bounds Write Akka HTTP can encounter stack exhaustion while parsing HTTP headers, which allows a remote attacker to conduct a Denial of Service attack by sending a `User-Agent` header with deeply nested comments. CVE-2021-42697
GHSA-3hw2-h67c-wq66

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T22:40:15.856669+00:00 GitLab Importer Affected by VCID-5781-s1ny-q7ey https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2023-44487.yml 38.4.0
2026-04-16T22:01:48.646599+00:00 GitLab Importer Fixing VCID-w7g1-y7u7-z3fg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2021-42697.yml 38.4.0
2026-04-11T23:59:43.019585+00:00 GitLab Importer Affected by VCID-5781-s1ny-q7ey https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2023-44487.yml 38.3.0
2026-04-11T23:17:25.296545+00:00 GitLab Importer Fixing VCID-w7g1-y7u7-z3fg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2021-42697.yml 38.3.0
2026-04-03T00:02:46.625683+00:00 GitLab Importer Affected by VCID-5781-s1ny-q7ey https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2023-44487.yml 38.1.0
2026-04-02T23:25:09.742507+00:00 GitLab Importer Fixing VCID-w7g1-y7u7-z3fg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2021-42697.yml 38.1.0
2026-04-01T17:45:53.421590+00:00 GitLab Importer Fixing VCID-w7g1-y7u7-z3fg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.typesafe.akka/akka-http-core_2.13/CVE-2021-42697.yml 38.0.0
2026-04-01T16:02:17.920413+00:00 GHSA Importer Fixing VCID-w7g1-y7u7-z3fg https://github.com/advisories/GHSA-3hw2-h67c-wq66 38.0.0
2026-04-01T13:11:51.654581+00:00 GithubOSV Importer Fixing VCID-w7g1-y7u7-z3fg https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-3hw2-h67c-wq66/GHSA-3hw2-h67c-wq66.json 38.0.0