Package impact
MAVEN / org.yamcs:yamcs-core
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-46621 | critical | — | 9.5 | 3d ago | Yamcs Vulnerable to Authenticated Remote Code Execution (RCE) via Jython Algorithm Code Injection | |||
| CVE-2026-46562 | critical | — | 9.5 | 3d ago | Yamcs Vulnerable to Remote Code Execution via Mission Database algorithm override | |||
| CVE-2026-44632 | critical | — | 9.5 | 4d ago | Yamcs Vulnerable to Server-Side Code Injection (RCE) via Janino Expression Engine in `JavaExprAlgorithmExecutionFactory` | |||
| CVE-2026-44596 | medium | — | 5.5 | 4d ago | Yamcs has No Rate Limiting on Authentication Endpoint | |||
| CVE-2026-44595 | medium | — | 5.5 | 4d ago | Yamcs vulnerable to unauthorized user enumeration via IAM API endpoints | |||
| CVE-2026-42568 | medium | — | 5.5 | 4d ago | Yamcs Vulnerable to LDAP Injection in LdapAuthModule |