See the full list of npm packages affected by the "Mastra Supply Chain Compromise - June 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Stack-based Buffer OverflowCVE-2026-50258
Affects xorg-x11-server-source | Versions <0:21.1.13-5.amzn2023.0.10
Has fix
amzn:2023Published 10 Jun 2026
- H
Unchecked Input for Loop ConditionCVE-2026-42256
Affects ruby3.4-rubygem-rss | Versions <0:0.3.1-27.amzn2023.0.6
Has fix
amzn:2023Published 10 Jun 2026
- M
Cross-site Scripting (XSS)CVE-2026-6019
Affects python3.9-debugsource | Versions <0:3.9.25-1.amzn2023.0.6
Has fix
amzn:2023Published 10 Jun 2026
- H
Missing AuthorizationCVE-2026-39833
Affects containerd-debuginfo | Versions <0:2.2.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Heap-based Buffer OverflowCVE-2026-32177
Affects dotnet-sdk-aot-9.0 | Versions <0:9.0.117-1.amzn2023.0.2
Has fix
amzn:2023Published 10 Jun 2026
- H
Incorrect Implementation of Authentication AlgorithmCVE-2026-46595
Affects containerd-stress-debuginfo | Versions <0:2.2.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Out-of-bounds WriteCVE-2026-8946
Affects firefox-debugsource | Versions <0:140.11.0-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Incorrect Implementation of Authentication AlgorithmCVE-2026-46595
Affects docker-debugsource | Versions <0:25.0.16-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Improper Validation of Specified Quantity in InputCVE-2026-39829
Affects docker-debugsource | Versions <0:25.0.16-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Arbitrary Command InjectionCVE-2026-46529
Affects papers | Versions <0:47.0-12.amzn2023
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6638CVE-2026-6638
Affects postgresql18-test-rpm-macros | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6637CVE-2026-6637
Affects postgresql18-contrib | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6637CVE-2026-6637
Affects postgresql18-upgrade-devel-debuginfo | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6638CVE-2026-6638
Affects postgresql18-llvmjit-debuginfo | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CRLF InjectionCVE-2026-42258
Affects ruby4.0-rubygem-power_assert | Versions <0:3.0.1-32.amzn2023.0.2
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6637CVE-2026-6637
Affects postgresql18-llvmjit | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6637CVE-2026-6637
Affects postgresql18-private-devel | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Buffer Access with Incorrect Length ValueCVE-2026-6575
Affects postgresql18-docs | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6479CVE-2026-6479
Affects postgresql18-server-devel-debuginfo | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6637CVE-2026-6637
Affects postgresql18-private-libs-debuginfo | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- M
Insufficient LoggingCVE-2026-2297
Affects python3.12-debug | Versions <0:3.12.13-2.amzn2023.0.2
Has fix
amzn:2023Published 10 Jun 2026
- H
Buffer Access with Incorrect Length ValueCVE-2026-6575
Affects postgresql18-test | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6479CVE-2026-6479
Affects postgresql18-test-rpm-macros | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
CVE-2026-6479CVE-2026-6479
Affects postgresql18-pltcl-debuginfo | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- M
CVE-2026-8376CVE-2026-8376
Affects perl-NDBM_File-debuginfo | Versions <0:1.15-477.amzn2023.0.9
Has fix
amzn:2023Published 10 Jun 2026
- M
CVE-2026-8376CVE-2026-8376
Affects perl-ph | Versions <0:5.32.1-477.amzn2023.0.9
Has fix
amzn:2023Published 10 Jun 2026
- M
Cross-site Scripting (XSS)CVE-2026-6019
Affects python3.12-tkinter | Versions <0:3.12.13-2.amzn2023.0.2
Has fix
amzn:2023Published 10 Jun 2026
- H
Integer Overflow or WraparoundCVE-2026-48095
Affects 7zip-standalone-debuginfo | Versions <0:26.01-14.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Covert Timing ChannelCVE-2026-6478
Affects postgresql18 | Versions <0:18.4-1.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026
- H
Integer Overflow or WraparoundCVE-2026-48095
Affects 7zip-standalone-all | Versions <0:26.01-14.amzn2023.0.1
Has fix
amzn:2023Published 10 Jun 2026