VYPR

Maven package

org.open-metadata/openmetadata-sdk

pkg:maven/org.open-metadata/openmetadata-sdk

Vulnerabilities (1)

  • CVE-2026-26010Feb 11, 2026
    affected < 1.11.8fixed 1.11.8

    OpenMetadata is a unified metadata platform. Prior to 1.11.8, calls issued by the UI against /api/v1/ingestionPipelines leak JWTs used by ingestion-bot for certain services (Glue / Redshift / Postgres). Any read-only user can gain access to a highly privileged account, typically