Is Quarkus 0.28.1 patched?

Red Hat · cycle 0.28 · Official site ↗

0.28.15/100Critical

Current stable (3.36.2): 100/100

Minimum safe version3.20.6.1

0.28.1 has 23 open critical-or-high vulnerabilities. Run 3.20.6.1 or later to clear them. See what 3.20.6.1 fixes →

Health score5/100

Open issues45

Exploited now0

Cycle 0.28 EOL—

Latest release3.36.2

Summary iPlain-English security status for Quarkus 0.28.1, built from its CVEs, active-exploitation data, end-of-life date and latest release.

Quarkus 0.28.1 is part of the 0.28 release line. 45 known vulnerabilities affect it. The minimum safe version is 3.20.6.1 — upgrade to it or later to clear the open critical/high issues. The latest supported Quarkus release is 3.36.2.

Known issues affecting 0.28.1

Exploited first, then by exploitation probability.

CVE-2022-4116 CRITICAL EPSS 33% → fixed in 2.14.2 CVE-2017-18640 HIGH EPSS 27% → see advisory CVE-2021-21295 MEDIUM EPSS 19% → see advisory CVE-2020-25649 HIGH EPSS 18% → see advisory CVE-2021-26291 CRITICAL EPSS 9% → fixed in 1.13.5 CVE-2020-13956 MEDIUM EPSS 9% → fixed in 1.7.6 CVE-2021-2471 MEDIUM EPSS 7% → fixed in 2.6.0 CVE-2021-37714 HIGH EPSS 7% → see advisory CVE-2021-37137 HIGH EPSS 6% → fixed in 2.2.4 CVE-2021-38153 MEDIUM EPSS 6% → fixed in 2.2.4 CVE-2021-37136 HIGH EPSS 6% → fixed in 2.2.4 CVE-2021-21409 MEDIUM EPSS 5% → see advisory CVE-2020-13692 HIGH EPSS 4% → see advisory CVE-2020-28491 HIGH EPSS 3% → fixed in 2.0.2 CVE-2022-21724 HIGH EPSS 3% → fixed in 2.7.2 CVE-2020-25638 HIGH EPSS 3% → see advisory CVE-2022-42003 HIGH EPSS 3% → fixed in 2.13.3 CVE-2021-43797 MEDIUM EPSS 3% → fixed in 2.5.3 CVE-2022-42004 HIGH EPSS 3% → fixed in 2.13.0 CVE-2020-1714 HIGH EPSS 3% → see advisory

Frequently asked