See the full list of npm packages affected by the "Mastra Supply Chain Compromise - June 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Untrusted Search PathCVE-2026-39883
Affects crossplane-provider-family-azure | Versions <2.6.0-r1
Has fix
wolfi:latestPublished 18 Jun 2026
- H
Untrusted Search PathCVE-2026-39883
Affects crossplane-provider-family-aws | Versions <2.6.0-r1
Has fix
wolfi:latestPublished 18 Jun 2026
Affects crossplane-provider-family-aws | Versions <2.6.0-r1
Has fix
wolfi:latestPublished 18 Jun 2026
Affects crossplane-provider-azure-managedidentity | Versions <2.6.0-r1
Has fix
wolfi:latestPublished 18 Jun 2026
- H
Untrusted Search PathCVE-2026-39883
Affects crossplane-provider-azure-managedidentity | Versions <2.6.0-r1
Has fix
wolfi:latestPublished 18 Jun 2026
- H
Untrusted Search PathCVE-2026-39883
Affects cilium-1.19 | Versions <1.19.5-r1
Has fix
wolfi:latestPublished 18 Jun 2026
Affects cilium-1.19 | Versions <1.19.5-r1
Has fix
wolfi:latestPublished 18 Jun 2026
- L
Uncontrolled Memory AllocationCVE-2026-39882
Affects cilium-1.19 | Versions <1.19.5-r1
Has fix
wolfi:latestPublished 18 Jun 2026
Affects cilium-1.19 | Versions <1.19.5-r1
Has fix
wolfi:latestPublished 18 Jun 2026
Affects argo-workflows-4.0 | Versions <4.0.6-r0
Has fix
wolfi:latestPublished 18 Jun 2026
Affects argo-workflows-3.7 | Versions <3.7.15-r0
Has fix
wolfi:latestPublished 18 Jun 2026
- H
Untrusted Search PathCVE-2021-4435
Affects yarn | Versions <1.22.13-r0
Has fix
wolfi:latestPublished 18 Jun 2026
- H
Cleartext Transmission of Sensitive InformationCVE-2019-5448
Affects yarn | Versions <1.17.3-r0
Has fix
wolfi:latestPublished 18 Jun 2026
- M
Time-of-check Time-of-use (TOCTOU)CVE-2019-15608
Affects yarn | Versions <1.19.0-r0
Has fix
wolfi:latestPublished 18 Jun 2026
- H
Link FollowingCVE-2019-10773
Affects yarn | Versions <1.21.1-r0
Has fix
wolfi:latestPublished 18 Jun 2026
- L
CVE-2026-54271CVE-2026-54271
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
- L
Improper Input ValidationCVE-2026-49982
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
- L
CVE-2026-53663CVE-2026-53663
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
- L
CVE-2026-53550CVE-2026-53550
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026
- L
CVE-2026-48712CVE-2026-48712
Affects vitess-24 | Versions <24.0.1-r4
Has fix
wolfi:latestPublished 18 Jun 2026