Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-9624
CVE-2025-9624
A vulnerability in OpenSearch allows attackers to cause Denial of Service (DoS) by submitting complex query_string inputs. This issue affects all OpenSearch versions between 3.0.0 and < 3.3.0 and OpenSearch < 2.19.4.
Published Nov 27, 2025
https://fluidattacks.com/advisories/chick
https://github.com/advisories/GHSA-mw3v-mmfw-3x2g
CVSS Score
High
7.5
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
@dragon-den/dopensearch
2.4.0
npm
@dragon-den/install-opensearch
0.0.1
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-app
5.6.5
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-app
5.7.7
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-app
5.7.8
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-app
5.7.9
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.3.0
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.3.2
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.3.3
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.4.0
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.4.1
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.4.2
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.0
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.1
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.2
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.3
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.4
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.5
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.5.7
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.6.0
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.6.1
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.6.2
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.6.3
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.6.5
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.0
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.1
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.2
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.3
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.4
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.6
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.7
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.8
maven
ca.uhn.hapi.fhir/hapi-fhir-cli-jpaserver
5.7.9
maven
ca.uhn.hapi.fhir/hapi-fhir-jpaserver-starter
5.3.0
maven
ca.uhn.hapi.fhir/hapi-fhir-jpaserver-starter
5.4.0
maven
ca.uhn.hapi.fhir/hapi-fhir-jpaserver-uhnfhirtest
5.6.5
maven
ca.uhn.hapi.fhir/hapi-fhir-jpaserver-uhnfhirtest
5.7.7
maven
ca.uhn.hapi.fhir/hapi-fhir-jpaserver-uhnfhirtest
5.7.8
maven
ca.uhn.hapi.fhir/hapi-fhir-jpaserver-uhnfhirtest
5.7.9
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.17-vvr-8.0.11-1
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.17-vvr-8.0.11-4
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.17-vvr-8.0.8
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.1.3-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.1.4-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.2.1-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.3.0-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.3.1-1-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.3.1-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.4.0-jdk11
maven
com.alibaba.ververica/flink-connector-elasticsearch7
1.20-vvr-11.4.1-jdk11
1-50 of 2,088
CVE-2025-9624 | Components Impacted | Sonatype Guide | Sonatype Guide
