See the full list of npm packages affected by the "Mastra Supply Chain Compromise - June 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Improper Handling of Length Parameter InconsistencyCVE-2026-33846
Affects gnutls | Versions [0,]
Has fix
ConanPublished 4 May 2026
- H
Integer Overflow or WraparoundCVE-2026-41445
Affects kissfft | Versions [0,]
Has fix
ConanPublished 3 May 2026
- L
Integer Overflow or WraparoundCVE-2026-42798
Affects lcms | Versions [2.16,]
Has fix
ConanPublished 3 May 2026
- M
Out-of-bounds WriteCVE-2026-7582
Affects openimageio | Versions [0,]
Has fix
ConanPublished 3 May 2026
- M
Integer Overflow or WraparoundCVE-2026-7598
Affects libssh2 | Versions [0,]
Has fix
ConanPublished 3 May 2026
- M
Uncontrolled RecursionCVE-2026-22021
Affects openjdk | Versions [0,]
Has fix
ConanPublished 3 May 2026
- H
Integer Underflow (Wrap or Wraparound)CVE-2026-33845
Affects gnutls | Versions [0,]
Has fix
ConanPublished 3 May 2026
- M
Improper Handling of Case SensitivityCVE-2026-3833
Affects gnutls | Versions [0,]
Has fix
ConanPublished 3 May 2026
- M
Incorrect Behavior Order: Early ValidationCVE-2026-3832
Affects gnutls | Versions [0,]
Has fix
ConanPublished 3 May 2026
- L
Exposure of Data Element to Wrong SessionCVE-2026-5773
Affects libcurl | Versions [7.76.0,8.20.0)
Has fix
ConanPublished 2 May 2026
- L
Origin Validation ErrorCVE-2026-6276
Affects libcurl | Versions [7.76.0,8.20.0)
Has fix
ConanPublished 2 May 2026
- M
Authentication Bypass by Primary WeaknessCVE-2026-5545
Affects libcurl | Versions [7.76.0,8.20.0)
Has fix
ConanPublished 2 May 2026
- M
Insertion of Sensitive Information Into Sent DataCVE-2026-6429
Affects libcurl | Versions [7.76.0,8.20.0)
Has fix
ConanPublished 2 May 2026
- M
Cleartext Transmission of Sensitive InformationCVE-2026-4873
Affects libcurl | Versions [7.76.0,8.20.0)
Has fix
ConanPublished 2 May 2026
- H
Insufficiently Protected CredentialsCVE-2026-6253
Affects libcurl | Versions [7.76.0,8.20.0)
Has fix
ConanPublished 2 May 2026
- H
Integer Underflow (Wrap or Wraparound)CVE-2026-5720
Affects miniupnpc | Versions [0,]
Has fix
ConanPublished 1 May 2026
- M
Improper Check for Unusual or Exceptional ConditionsCVE-2026-6231
Affects mongo-c-driver | Versions [,1.30.6)
Has fix
ConanPublished 1 May 2026
- M
Stack-based Buffer OverflowCVE-2026-29628
Affects tinyobjloader | Versions [0,]
Has fix
ConanPublished 1 May 2026
- M
Integer Overflow or WraparoundCVE-2026-42371
Affects uriparser | Versions [,1.0.2)
Has fix
ConanPublished 30 Apr 2026
- M
Improper Encoding or Escaping of OutputCVE-2026-40023
Affects log4cxx | Versions [,1.7.0)
Has fix
ConanPublished 30 Apr 2026
- H
XML External Entity (XXE) InjectionCVE-2026-22016
Affects openjdk | Versions [0,]
Has fix
ConanPublished 29 Apr 2026
- L
Use of a Broken or Risky Cryptographic AlgorithmCVE-2026-22007
Affects openjdk | Versions [0,]
Has fix
ConanPublished 29 Apr 2026
- M
Heap-based Buffer OverflowCVE-2026-22008
Affects openjdk | Versions [0,]
Has fix
ConanPublished 29 Apr 2026
- L
Use of a Broken or Risky Cryptographic AlgorithmCVE-2026-34268
Affects openjdk | Versions [0,]
Has fix
ConanPublished 29 Apr 2026