pkg:Maven/org.apache.ivy:ivy

3 total CVEsCRITICAL1HIGH2

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.1CVE-2022-37865Apache Ivy does not verify target path when extracting the archive
    >= 2.4.0, < 2.5.1
  • HIGH8.2CVE-2022-46751Apache Ivy External Entity Reference vulnerability
    from 0, < 2.5.2
  • HIGH7.5CVE-2022-37866Apache Ivy vulnerable to path traversal
    >= 2.0.0, < 2.5.1