-
Vulnerable Library - jboss-logmanager-2.1.18.Final.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/ch/qos/logback/logback-classic/1.2.8/logback-cl…
-
Vulnerable Library - log4j-log4j-1.2.17.jar
Library home page: http://archive.apache.org/dist/pulsar/pulsar-2.6.1/apache-pulsar-2.6.1-bin.tar.gz
Path to vulnerable library: /log4j/log4j-1.2.17.jar
…
-
Vulnerable Library - slf4j-log4j12-1.5.0.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/log4j/log4j/1.2.13/log4j-1.2.13.jar
## Vulnerabilitie…
-
The organization I work with uses Nexus as a proxy for downloading installable artifacts and Sonartype Repository Firewall to scan those artifacts. It blocks [html5validator](https://pypi.org/project/…
-
Is couchdb-lucene affected by any of the following vulnerabilities reported against log4j. And what are plans to fix them?
CVE-2022-23307 CVE-2021-44228 CVE-2021-45046 CVE-2021-4104 CVE-2019-17571 …
-
1. CVE-2017-5645
2. CVE-2021-42550
3. CVE-2020-9488
It is especially important to detect CVE-2021-42550
Maybe in the documentation (readme) such a table will be useful
| Detect | CVE …
-
Vulnerable Library - log4j-1.2.17.jar
Apache Log4j 1.2
Library home page: http://www.apache.org
Path to dependency file: /hadoop-common-project/hadoop-common/pom.xml
Path to vulnerable library: /hom…
-
- Vendor Name: ST Microelectronics
- Product Name: STM32CubeMX / STM32CubeIDE
- Version(s) affected: 6.x
- Status: Unknown
- Update Available: No
- Notes: Contains log4j, could just verify use …
BenBE updated
2 years ago
-
Vulnerable Library - log4j-1.2.13.jar
Log4j
Library home page: http://logging.apache.org/log4j/docs/
Path to dependency file: /pom.xml
Path to vulnerable library: /target/easybuggy-1-SNAPSHOT/WEB-IN…
-
### Issue description
It seems that ES Hadoop jar is dependent on commons-logging (1.1.1) which according to mvnrepository.com has a vulnerabilities from dependencies which one of them is [CVE-2021…