org.wso2.carbon.registry:carbon-registry

Maven3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting org.wso2.carbon.registry:carbon-registrypage 1 of 1

CVE-2022-4520LOWCVSS 3.5EG 3.5✓ Fixed in 4.8.12
2022-12-15
vulnerable: 4.6.11 ... 4.8.9 (69 versions)
A vulnerability was found in WSO2 carbon-registry up to 4.8.11. It has been rated as problematic. Affected by this issue is some unknown functionality of the file components/registry/org.wso2.carbon.registry.search.ui/src/main/resources/we…
CVE-2022-4521LOWCVSS 3.5EG 3.5✓ Fixed in 4.8.7
2022-12-15
vulnerable: 4.6.11 ... 4.8.2 (64 versions)
A vulnerability classified as problematic has been found in WSO2 carbon-registry up to 4.8.6. This affects an unknown part of the component Request Parameter Handler. The manipulation of the argument parentPath/path/username/path/profile_m…
CVE-2023-6911MEDIUMCVSS 4.8EG 4.8✓ Fixed in 4.7.37
2023-12-18
vulnerable: 4.6.11 ... 4.7.36 (47 versions)
Multiple WSO2 products have been identified as vulnerable due to improper output encoding, a Stored Cross Site Scripting (XSS) attack can be carried out by an attacker injecting a malicious payload into the Registry feature of the Manageme…

Check whether org.wso2.carbon.registry:carbon-registry is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for org.wso2.carbon.registry:carbon-registry CVEs against the assets you own.

Start Free Scan →