-
This requires adding a JDBC to connect to Apache Hive database to test for authentication. The tester should also check for services with no authentication.
Please read the rules of engagement fir…
-
**Feature request**
We propose adding a feature to xGitGuard that allows scanning of a local file system. Currently, xGitGuard supports scanning GitHub repositories, but we aim to extend this capab…
-
Continuing on my bugs reports ;)
Runing latest forseti version 2.25.2
took the latest docker images for config validator from here (tag b3da694)
https://console.cloud.google.com/gcr/images/fors…
-
When I scan using an spdx sbom, I see:
```
osv-scanner scan --sbom=SBOM-report-testproject-habi-20240410_0131-clean-licenses.spdx.json --verbosity verbose
Scanned /home/paul/SBOM-report-testproje…
-
I am using a security scanner in my application which is running on amazoncorretto:11.0.23-alpine3.18
when I see the internal image I can see its using amazon-coretto-11.
My scanner is reporting i…
-
Hi,
I'm a security analyst and want to check up what's the status of CVE-2024-34997 - as it seems to be assigned to a result of incorrect use of pickle module and not a real vulnerability. Although…
-
**Agent Environment**
- **Agent version**: 7.57.0
- **Cluster Agent version**: 7.57.0
- **Operating System**: Linux
- **Cloud Provider**: Azure
**Describe what happened:**
We upgra…
-
Currently, httpx works on older SSL versions, but our builtin request helper doesn't:
```
ssl.SSLError: [SSL: UNSUPPORTED_PROTOCOL] unsupported protocol (_ssl.c:1000)
```
Supporting older, ins…
-
## CVE-2022-24891 - Medium Severity Vulnerability
Vulnerable Library - esapi-2.1.0.jar
The Enterprise Security API (ESAPI) project is an OWASP project
to create simple strong security contro…
-
## CVE-2018-1260 - Critical Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://stat…