{"id":"CLEANSTART-2026-GH89210","summary":"Security fixes for CVE-2015-0886, CVE-2020-8908, CVE-2022-1471, CVE-2022-24823, CVE-2022-38752, CVE-2022-41854, CVE-2023-2976, CVE-2023-34462, CVE-2024-12798, CVE-2024-12801, CVE-2024-13009, CVE-2024-47535, CVE-2024-6763, CVE-2024-8184, CVE-2024-9823, CVE-2025-11143, CVE-2025-24970, CVE-2025-25193, CVE-2025-48734, CVE-2025-48924, CVE-2025-52999, CVE-2025-58057, CVE-2026-1225, CVE-2026-23901, CVE-2026-44431, CVE-2026-44432, ghsa-25qh-j22f-pwp8, ghsa-389x-839f-4rhx, ghsa-3p8m-j85q-pgmj, ghsa-4g8c-wm8x-jfhw, ghsa-5mg8-w23w-74h3, ghsa-6mjq-h674-j845, ghsa-6v67-2wr5-gvf4, ghsa-72hv-8253-57qq, ghsa-7g45-4rm6-3mm3, ghsa-9h6p-92jq-888x, ghsa-9w3m-gqgf-c4p9, ghsa-c4qc-4q9p-m9q9, ghsa-g8m5-722r-8whq, ghsa-gc5v-m9x4-r6x2, ghsa-h46c-h94j-95f3, ghsa-j26w-f9rq-mr2q, ghsa-j288-q9x7-2f5v, ghsa-jc7h-c423-mpjc, ghsa-mf9v-mfxr-j63j, ghsa-mjmj-j48q-9wg2, ghsa-pr98-23f8-jwxv, ghsa-q4rv-gq96-w7c5, ghsa-qccp-gfcp-xxvc, ghsa-qh8g-58pp-2wxh, ghsa-qqpg-mvqg-649v, ghsa-w37g-rhq8-7m4j, ghsa-wjpw-4j6x-6rwh, ghsa-wxr5-93ph-8wr9, ghsa-xq3w-v528-46rv applied in versions: 3.6.1-r0, 3.6.1-r1, 3.6.1-r2, 3.6.1-r3, 3.6.1-r4","details":"Multiple security vulnerabilities affect the cassandra-reaper-fips package. These issues are resolved in later releases. See references for individual vulnerability details.","modified":"2026-05-21T09:15:06.880511465Z","published":"2026-05-18T13:15:02.086653Z","upstream":["CVE-2015-0886","CVE-2020-8908","CVE-2022-1471","CVE-2022-24823","CVE-2022-38752","CVE-2022-41854","CVE-2023-2976","CVE-2023-34462","CVE-2024-12798","CVE-2024-12801","CVE-2024-13009","CVE-2024-47535","CVE-2024-6763","CVE-2024-8184","CVE-2024-9823","CVE-2025-11143","CVE-2025-24970","CVE-2025-25193","CVE-2025-48734","CVE-2025-48924","CVE-2025-52999","CVE-2025-58057","CVE-2026-1225","CVE-2026-23901","CVE-2026-44431","CVE-2026-44432","ghsa-25qh-j22f-pwp8","ghsa-389x-839f-4rhx","ghsa-3p8m-j85q-pgmj","ghsa-4g8c-wm8x-jfhw","ghsa-5mg8-w23w-74h3","ghsa-6mjq-h674-j845","ghsa-6v67-2wr5-gvf4","ghsa-72hv-8253-57qq","ghsa-7g45-4rm6-3mm3","ghsa-9h6p-92jq-888x","ghsa-9w3m-gqgf-c4p9","ghsa-c4qc-4q9p-m9q9","ghsa-g8m5-722r-8whq","ghsa-gc5v-m9x4-r6x2","ghsa-h46c-h94j-95f3","ghsa-j26w-f9rq-mr2q","ghsa-j288-q9x7-2f5v","ghsa-jc7h-c423-mpjc","ghsa-mf9v-mfxr-j63j","ghsa-mjmj-j48q-9wg2","ghsa-pr98-23f8-jwxv","ghsa-q4rv-gq96-w7c5","ghsa-qccp-gfcp-xxvc","ghsa-qh8g-58pp-2wxh","ghsa-qqpg-mvqg-649v","ghsa-w37g-rhq8-7m4j","ghsa-wjpw-4j6x-6rwh","ghsa-wxr5-93ph-8wr9","ghsa-xq3w-v528-46rv"],"database_specific":{},"references":[{"type":"ADVISORY","url":"https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-GH89210.json"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2015-0886"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2020-8908"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-1471"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-24823"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-38752"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2022-41854"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-2976"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2023-34462"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-12798"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-12801"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-13009"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-47535"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-6763"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-8184"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2024-9823"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-11143"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-24970"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-25193"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-48734"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-48924"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-52999"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2025-58057"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-1225"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-23901"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-44431"},{"type":"WEB","url":"https://osv.dev/vulnerability/CVE-2026-44432"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-25qh-j22f-pwp8"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-389x-839f-4rhx"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-3p8m-j85q-pgmj"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-4g8c-wm8x-jfhw"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-5mg8-w23w-74h3"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-6mjq-h674-j845"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-6v67-2wr5-gvf4"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-72hv-8253-57qq"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-7g45-4rm6-3mm3"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-9h6p-92jq-888x"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-9w3m-gqgf-c4p9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-c4qc-4q9p-m9q9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-g8m5-722r-8whq"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-gc5v-m9x4-r6x2"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-h46c-h94j-95f3"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-j26w-f9rq-mr2q"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-j288-q9x7-2f5v"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-jc7h-c423-mpjc"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-mf9v-mfxr-j63j"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-mjmj-j48q-9wg2"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-pr98-23f8-jwxv"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-q4rv-gq96-w7c5"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-qccp-gfcp-xxvc"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-qh8g-58pp-2wxh"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-qqpg-mvqg-649v"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-w37g-rhq8-7m4j"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-wjpw-4j6x-6rwh"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-wxr5-93ph-8wr9"},{"type":"WEB","url":"https://osv.dev/vulnerability/ghsa-xq3w-v528-46rv"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2015-0886"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8908"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1471"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-24823"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-38752"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-41854"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-2976"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-34462"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-12798"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-12801"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-13009"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47535"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-6763"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-8184"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-9823"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-11143"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-24970"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-25193"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-48734"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-48924"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-52999"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-58057"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-1225"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23901"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44431"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-44432"}],"affected":[{"package":{"name":"cassandra-reaper-fips","ecosystem":"CleanStart"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.6.1-r4"}]}],"database_specific":{"source":"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-GH89210.json"}}],"schema_version":"1.7.5"}