VDB
CGA-4fcv-jq36-r7hx
CGA-4fcv-jq36-r7hx
REJECTED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Wolfi | apache-nifi-registry-toolkit | 0, 0, 0 |
| Chainguard | apache-nifi-registry-toolkit | 0, 0, 0 |
| Wolfi | apache-nifi-registry | 0, 0, 0 |
| Chainguard | apache-nifi-registry | 0, 0, 0 |
Exploit Intelligence
- Apache's commons-lang2 v2.6 with a backported fix for CVE-2025-48924 (github-poc)
- pom-common.xml (github-poc)
- VulnerableDependencies.kt (github-poc)
- EncryptionUtil.java (github-poc)
- druid-612f0710.json (github-poc)
- dockerscan.yml (github-poc)
- owasp-suppressions-pending.xml (github-poc)
- pom.xml (github-poc)
- pom.xml (github-poc)
- dependencyCheckSuppression.xml (github-poc)
…and 3 more exploits
Timeline
- Jan 28, 2026 CVE Rejected