Known Vulnerabilities for Transport-http by Wso2
Listed below are 1 of the newest known vulnerabilities associated with "Transport-http" by "Wso2".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42856 json | Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/ca... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42282 json | n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to v... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-42034 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, for stream request bodies, maxB... | Not Provided | 2026-04-24 | 2026-04-24 |
| CVE-2026-42033 json | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, when Object.prototype has been ... | Not Provided | 2026-04-24 | 2026-04-25 |
| CVE-2026-41495 json | n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to v... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-40576 json | excel-mcp-server is a Model Context Protocol server for Excel file manipulation. A path traversal vulnerability exists in exc... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-40566 json | FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery (S... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-40466 json | Improper Input Validation, Improper Control of Generation of Code ('Code Injection') vulnerability in Apache ActiveMQ Broker,... | Not Provided | 2026-04-24 | 2026-04-25 |
| CVE-2026-40394 json | Varnish Cache 9 before 9.0.1 and Varnish Enterprise before 6.0.16r11 allows a "workspace overflow" denial of service (daemon ... | Not Provided | 2026-04-12 | 2026-04-13 |
| CVE-2026-39807 json | Reliance on Untrusted Inputs in a Security Decision vulnerability in mtrudel bandit allows unauthenticated transport-state sp... | Not Provided | 2026-05-01 | 2026-05-04 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Wso2 | Transport-http | 6.3.8 | |||
| Application | Wso2 | Transport-http | 6.3.7 | |||
| Application | Wso2 | Transport-http | 6.3.6 | |||
| Application | Wso2 | Transport-http | 6.3.5 | |||
| Application | Wso2 | Transport-http | 6.3.4 | |||
| Application | Wso2 | Transport-http | 6.3.3 | |||
| Application | Wso2 | Transport-http | 6.3.2 | |||
| Application | Wso2 | Transport-http | 6.3.1 | |||
| Application | Wso2 | Transport-http | 6.3.0 | |||
| Application | Wso2 | Transport-http | 6.2.9 | |||
| Application | Wso2 | Transport-http | 6.2.8 | |||
| Application | Wso2 | Transport-http | 6.2.7 | |||
| Application | Wso2 | Transport-http | 6.2.6 | |||
| Application | Wso2 | Transport-http | 6.2.5 | |||
| Application | Wso2 | Transport-http | 6.2.4 | |||
| Application | Wso2 | Transport-http | 6.2.34 | |||
| Application | Wso2 | Transport-http | 6.2.33 | |||
| Application | Wso2 | Transport-http | 6.2.32 | |||
| Application | Wso2 | Transport-http | 6.2.31 | |||
| Application | Wso2 | Transport-http | 6.2.30 |