Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.4
purl pkg:maven/org.apache.cxf/cxf-rt-transports-http@3.6.4
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-k3hu-vqn3-yuaj Apache CXF allows unrestricted memory consumption in CXF HTTP clients In versions of Apache CXF before 3.6.4 and 4.0.5 (3.5.x and lower versions are not impacted), a CXF HTTP client conduit may prevent HTTPClient instances from being garbage collected and it is possible that memory consumption will continue to increase, eventually causing the application to run out of memory CVE-2024-41172
GHSA-4mgg-fqfq-64hg

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T23:04:38.084691+00:00 GitLab Importer Fixing VCID-k3hu-vqn3-yuaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-transports-http/CVE-2024-41172.yml 38.4.0
2026-04-12T00:22:32.642998+00:00 GitLab Importer Fixing VCID-k3hu-vqn3-yuaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-transports-http/CVE-2024-41172.yml 38.3.0
2026-04-03T00:30:08.314716+00:00 GitLab Importer Fixing VCID-k3hu-vqn3-yuaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-transports-http/CVE-2024-41172.yml 38.1.0
2026-04-02T12:39:46.421231+00:00 GitLab Importer Fixing VCID-k3hu-vqn3-yuaj https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.cxf/cxf-rt-transports-http/CVE-2024-41172.yml 38.0.0
2026-04-01T16:06:04.320990+00:00 GHSA Importer Fixing VCID-k3hu-vqn3-yuaj https://github.com/advisories/GHSA-4mgg-fqfq-64hg 38.0.0
2026-04-01T12:51:27.652023+00:00 GithubOSV Importer Fixing VCID-k3hu-vqn3-yuaj https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/07/GHSA-4mgg-fqfq-64hg/GHSA-4mgg-fqfq-64hg.json 38.0.0