Package impact
Maven / org.apache.httpcomponents.client5:httpclient5
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-40542 | high | 7.3 | 7.3 | 1mo ago | Apache HttpClient accepts SCRAM-SHA-256 authentication without proper mutual authentication verification | |||
| CVE-2025-27820 | unknown | — | — | 1y ago | Apache HttpClient disables domain checks |