VYPR

Maven package

org.geysermc.geyser/core

pkg:maven/org.geysermc.geyser/core

Vulnerabilities (1)

  • CVE-2026-42188LowMay 11, 2026
    affected < 2.9.3fixed 2.9.3

    Geyser is a bridge between Minecraft: Bedrock Edition and Minecraft: Java Edition. Prior to 2.9.3, a server-side request forgery (SSRF) vulnerability exists in Geyser’s handling of Bedrock player head texture data. By supplying a crafted Base64-encoded skin texture URL via the /g