Known Vulnerabilities for Apache MINA by Apache Software Foundation
Listed below are 7 of the newest known vulnerabilities associated with "Apache MINA" by "Apache Software Foundation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42779 json | The fix for CVE-2026-41635 was not applied to the 2.1.X and 2.2.X branches. Here was the original issue description: ... | Not Provided | 2026-05-01 | 2026-05-01 |
| CVE-2026-42778 json | The fix for CVE-2026-41409 was not applied to the 2.1.X and 2.2.X branches. Here was the original issue description: The ... | Not Provided | 2026-05-01 | 2026-05-01 |
| CVE-2026-41635 json | Apache MINA's AbstractIoBuffer.resolveClass() contains two branches, one of them (for static classes or primitive types) does... | Not Provided | 2026-04-27 | 2026-04-28 |
| CVE-2026-41409 json | The fix for CVE-2024-52046 in Apache MINA AbstractIoBuffer.getObject() was incomplete. The classname allowlist of classes all... | Not Provided | 2026-04-27 | 2026-04-27 |
| CVE-2026-40473 json | The camel-mina component's MinaConverter.toObjectInput(IoBuffer) type converter wraps an IoBuffer in a java.io.ObjectInputStr... | Not Provided | 2026-04-27 | 2026-04-27 |
| CVE-2023-48795 json | The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote att... | Not Provided | 2023-12-18 | 2026-05-12 |
| CVE-2022-45047 json | Class org.apache.sshd.server.keyprovider.SimpleGeneratorHostKeyProvider in Apache MINA SSHD <= 2.9.1 uses Java deserializatio... | Not Provided | 2022-11-16 | 2026-05-01 |