Pebbletemplates Pebble Templates — known CVE vulnerabilities
Every CVE whose affected-product data names Pebbletemplates Pebble Templates, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-19899 — CVSS 9.8 (critical): Pebble Templates 3.1.2 allows attackers to bypass a protection mechanism (intended to block access to instances of java.lang.Class) because…
CVE-2022-37767 — CVSS 9.8 (critical): Pebble Templates 3.1.5 allows attackers to bypass a protection mechanism and implement arbitrary code execution with springbok. NOTE: the…
CVE-2025-1686 — CVSS 6.8 (medium): Versions of the package io.pebbletemplates:pebble from 0 and before 4.1.0 are vulnerable to External Control of File Name or Path via the…