Search for packages
Package details: pkg:maven/io.helidon/helidon-dependencies@2.0.0-rc1
purl pkg:maven/io.helidon/helidon-dependencies@2.0.0-rc1
Tags Ghost
Next non-vulnerable version 2.0.0-RC2
Latest non-vulnerable version 2.4.1
Risk 3.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-555c-e151-fudr
Aliases:
CVE-2022-21404
Vulnerability in the Helidon product of Oracle Fusion Middleware (component: Reactive WebServer). Supported versions that are affected are 1.4.10 and 2.0.0-RC1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Helidon. Successful attacks of this vulnerability can result in takeover of Helidon. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).
2.0.0-RC2
Affected by 0 other vulnerabilities.
2.0.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-07-01T18:12:56.785623+00:00 GitLab Importer Affected by VCID-555c-e151-fudr https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/io.helidon/helidon-dependencies/CVE-2022-21404.yml 36.1.3