pkg:Maven/org.apache.ignite:ignite-core

All known vulnerabilities

• CRITICAL9.8CVE-2018-8018Code execution via deserialization in org.apache.ignite:ignite-core
  from 0, < 2.6
• CRITICAL9.8CVE-2018-1295Apache serialization mechanism does not have a list of classes allowed for serialization/deserialization
  from 0, < 2.4
• CRITICAL9.1CVE-2020-1963File system access via H2 in Apache Ignite
  from 0, < 2.8.1
• CRITICAL9.0Apache Ignite: Possible RCE when deserializing incoming messages by the server node
  >= 2.6.0, < 2.17.0
• HIGH7.5Apache Ignite communicates to an external PHP server where sensitive information is sent
  from 0, < 2.1
• MEDIUM5.9Moderate severity vulnerability that affects org.apache.ignite:ignite-core
  from 0, < 1.9