VIR Vulnerability Intelligence Relay

Package impact

java MAVEN / org.apache.httpcomponents.client5:httpclient5

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-40542 high 7.3 7.3 1mo ago Apache HttpClient accepts SCRAM-SHA-256 authentication without proper mutual authentication verification