VulnerableCode Package Details - pkg:maven/org.apache.avro/avro@1.11.4

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-agjx-5whj-dyac	Apache Avro Java SDK: Arbitrary Code Execution when reading Avro Data (Java SDK) Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute arbitrary code. Users are recommended to upgrade to version 1.11.4 or 1.12.0, which fix this issue.	CVE-2024-47561 GHSA-r7pg-v2c8-mfg3

Vulnerability

Summary

Aliases

VCID-agjx-5whj-dyac

Apache Avro Java SDK: Arbitrary Code Execution when reading Avro Data (Java SDK) Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to execute arbitrary code. Users are recommended to upgrade to version 1.11.4 or 1.12.0, which fix this issue.

CVE-2024-47561
GHSA-r7pg-v2c8-mfg3

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T23:10:07.257016+00:00	GitLab Importer	Fixing	VCID-agjx-5whj-dyac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.avro/avro/CVE-2024-47561.yml	38.4.0
2026-04-12T00:28:23.320798+00:00	GitLab Importer	Fixing	VCID-agjx-5whj-dyac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.avro/avro/CVE-2024-47561.yml	38.3.0
2026-04-03T00:36:08.065611+00:00	GitLab Importer	Fixing	VCID-agjx-5whj-dyac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.avro/avro/CVE-2024-47561.yml	38.1.0
2026-04-02T12:40:08.462382+00:00	GitLab Importer	Fixing	VCID-agjx-5whj-dyac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.avro/avro/CVE-2024-47561.yml	38.0.0
2026-04-01T16:06:31.288885+00:00	GHSA Importer	Fixing	VCID-agjx-5whj-dyac	https://github.com/advisories/GHSA-r7pg-v2c8-mfg3	38.0.0
2026-04-01T12:49:16.786760+00:00	GithubOSV Importer	Fixing	VCID-agjx-5whj-dyac	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/10/GHSA-r7pg-v2c8-mfg3/GHSA-r7pg-v2c8-mfg3.json	38.0.0