Apache Eventmesh

2 CVEs affecting Apache Eventmesh. Latest disclosed: 2025-08-20. Critical: 1, High: 0.

Top CVEs affecting Apache Eventmesh
CVESeverityScorePublishedSummary
CVE-2024-56180Critical9.82025-02-14CWE-502 Deserialization of Untrusted Data at the eventmesh-meta-raft plugin module in Apache EventMesh master branch without release version on windows\linux\m…
CVE-2024-39954Medium6.32025-08-20CWE-918 Server-Side Request Forgery (SSRF) in eventmesh-runtime module in WebhookUtil.java on windows\linux\mac os e.g. allows the attacker can abuse functiona…