Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2026-2818
CVE-2026-2818
A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers to write files outside the intended extraction directory. This vulnerability appears to be susceptible on Windows OS only.
Published Feb 23, 2026
https://github.com/advisories/GHSA-xq4j-x39q-xhqm
CVSS Score
Medium
6.9
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
maven
com.netflix.ndbench/ndbench-web
0.3.10
maven
com.netflix.ndbench/ndbench-web
0.3.11
maven
com.netflix.ndbench/ndbench-web
0.3.12
maven
com.netflix.ndbench/ndbench-web
0.3.13
maven
com.netflix.ndbench/ndbench-web
0.3.14
maven
com.netflix.ndbench/ndbench-web
0.3.15
maven
com.netflix.ndbench/ndbench-web
0.3.16
maven
com.netflix.ndbench/ndbench-web
0.3.17
maven
com.netflix.ndbench/ndbench-web
0.3.18
maven
com.netflix.ndbench/ndbench-web
0.3.5
maven
com.netflix.ndbench/ndbench-web
0.3.6
maven
com.netflix.ndbench/ndbench-web
0.3.7
maven
com.netflix.ndbench/ndbench-web
0.3.8
maven
com.netflix.ndbench/ndbench-web
0.3.9
maven
com.netflix.ndbench/ndbench-web
0.4.0
maven
com.netflix.ndbench/ndbench-web
0.4.10
maven
com.netflix.ndbench/ndbench-web
0.4.11
maven
com.netflix.ndbench/ndbench-web
0.4.12
maven
com.netflix.ndbench/ndbench-web
0.4.13
maven
com.netflix.ndbench/ndbench-web
0.4.14
maven
com.netflix.ndbench/ndbench-web
0.4.15
maven
com.netflix.ndbench/ndbench-web
0.4.16
maven
com.netflix.ndbench/ndbench-web
0.4.17
maven
com.netflix.ndbench/ndbench-web
0.4.18
maven
com.netflix.ndbench/ndbench-web
0.4.1
maven
com.netflix.ndbench/ndbench-web
0.4.2
maven
com.netflix.ndbench/ndbench-web
0.4.3
maven
com.netflix.ndbench/ndbench-web
0.4.4
maven
com.netflix.ndbench/ndbench-web
0.4.5
maven
com.netflix.ndbench/ndbench-web
0.4.6
maven
com.netflix.ndbench/ndbench-web
0.4.7
maven
com.netflix.ndbench/ndbench-web
0.4.8
maven
com.netflix.ndbench/ndbench-web
0.4.9
maven
com.netflix.ndbench/ndbench-web
0.5.0-rc.1
maven
com.netflix.ndbench/ndbench-web
0.5.0-rc.2
maven
com.netflix.ndbench/ndbench-web
0.5.0-rc.3
maven
com.netflix.ndbench/ndbench-web
0.5.1
maven
com.netflix.ndbench/ndbench-web
0.5.2
maven
com.netflix.ndbench/ndbench-web
0.6.0-rc.1
maven
com.netflix.ndbench/ndbench-web
0.6.0
maven
com.netflix.ndbench/ndbench-web
0.6.1
maven
com.netflix.ndbench/ndbench-web
0.6.2
maven
com.netflix.ndbench/ndbench-web
0.7.0-rc.2
maven
com.netflix.ndbench/ndbench-web
0.7.0
maven
com.netflix.ndbench/ndbench-web
0.7.1
maven
com.netflix.ndbench/ndbench-web
0.7.2
maven
com.netflix.ndbench/ndbench-web
0.7.3
maven
com.netflix.ndbench/ndbench-web
0.7.4
maven
org.springframework.cloud.stream.app/aggregator-processor-kafka
2.0.0.RELEASE
maven
org.springframework.cloud.stream.app/aggregator-processor-kafka
2.0.1.RELEASE
1-50 of 459
CVE-2026-2818 | Components Impacted | Sonatype Guide | Sonatype Guide
