Homepage

com.google.guava:guava vulnerabilities

Licenses: Apache-2.0
Published: 15 years ago Last updated: 2 months ago Latest version: 33.5.0-jre Latest non-vulnerable version: 33.5.0-jre

License

Apache-2.0[10.0-rc1,);
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the com.google.guava:guava package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
Creation of Temporary File in Directory with Insecure Permissions

[,32.0.0-android)(32.0.0-android,32.0.0-jre)
  • L
Information Disclosure

[,30.0-android)(30.0-android,30.0-jre)
  • M
Deserialization of Untrusted Data

[11.0,24.1.1)(24.1.1-android,24.1.1-jre)

Package versions

152 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
33.5.0-jre17 Sep, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.5.0-android17 Sep, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.8-jre14 Apr, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.8-android14 Apr, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.7-jre8 Apr, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.7-android8 Apr, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.6-jre25 Mar, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.6-android25 Mar, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.5-jre19 Mar, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
33.4.5-android19 Mar, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L