-
### What happened?
Zookeeper version 3.6.0 is vulnerable and needs to be upgraded to 3.6.3。
### How can we reproduce it (as minimally and precisely as possible)?
CVE-2021-28165
CVE-2020-10663
CVE…
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | Apache Log4j
Description | Apache Log4j 1.2
Language | JAVA
Vulnerabi…
-
### Repository URL
https://github.com/CodeThreat/codethreat-jenkins-plugin
### New Repository Name
codethreat-scanner-plugin
### Description
The Jenkins integration plugin allows users to integra…
-
## CVE-2022-23302 - High Severity Vulnerability
Vulnerable Library - log4j-1.2.13.jar
Log4j
Library home page: http://logging.apache.org/log4j/
Path to dependency file: /pom.xml
Path to vulnerable l…
-
## CVE-2022-23302 - High Severity Vulnerability
Vulnerable Library - log4j-1.2.7.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /tory/log4j/log4j/1.2.7/log4j-1.2.7.jar
Dependen…
-
Vulnerable Library - slf4j-log4j12-1.5.0.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/log4j/log4j/1.2.13/log4j-1.2.13.jar
Found in HEAD comm…
-
List of CVEs for rosetta-dsl
`mvn org.codehaus.mojo:versions-maven-plugin:display-dependency-updates`
```
[ERROR] org.eclipse.osgi-3.17.100.v20211104-1730.jar: CVE-2021-41033
[ERROR] org.jun…
-
**Is your feature request related to a problem? Please describe.**
I noticed that the Netty package under Alluxio hasn't been updated in 2 years,I don't know why the community doesn't keep this dep…
-
## CVE-2022-23302 - High Severity Vulnerability
Vulnerable Library - log4j-1.2.17.jar
Apache Log4j 1.2
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/…
-
## CVE-2022-23302 - High Severity Vulnerability
Vulnerable Library - log4j-1.2.14.jar
Log4j
Library home page: http://logging.apache.org/log4j/
Path to dependency file: /pom.xml
Path to vulnerable l…