org.http4s:blaze-core_2.13 (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.http4s:blaze-core_2.13, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2021-21293 — CVSS 7.5 (high): blaze is a Scala library for building asynchronous pipelines, with a focus on network IO. All servers running blaze-core before version…
CVE-2021-21294 — CVSS 7.5 (high): Http4s (http4s-blaze-server) is a minimal, idiomatic Scala interface for HTTP services. Http4s before versions 0.21.17, 0.22.0-M2, and…