-
## CVE-2022-23307 - High Severity Vulnerability
Vulnerable Library - log4j-1.2.17.jar
Apache Log4j 1.2
Library home page: http://www.apache.org
Path to dependency file: /hadoop-mapreduce-project/had…
-
## CVE-2020-9493 - Critical Severity Vulnerability
Vulnerable Library - log4j-1.2.17.jar
Apache Log4j 1.2
Library home page: http://www.apache.org
Path to dependency file: /hadoop-mapreduce-project/…
-
## CVE-2020-9488 - Low Severity Vulnerability
Vulnerable Library - log4j-1.2.17.jar
Apache Log4j 1.2
Library home page: http://www.apache.org
Path to dependency file: /hadoop-mapreduce-project/hadoo…
-
## CVE-2022-40152 - Medium Severity Vulnerability
Vulnerable Library - woodstox-core-5.0.3.jar
Woodstox is a high-performance XML processor that
implements Stax (JSR-173), SAX2 and Stax2 API…
-
Vulnerable Library - jetty-server-9.4.55.v20240627.jar
The core jetty server artifact.
Library home page: https://webtide.com
Path to dependency file: /plugins/repository-hdfs/build.gradle
Path to v…
-
在使用一些复杂的 SQL 时,如:时间分组、自定义字段等,非基础类型的字段值通常会被设置为 `[]byte` ,我们需要自行实现 `Scanner` 接口解析其值,但是在 carbon 中,只解析值为 `time.Time` 类型,并未解析 `[]byte` ,导致使用复杂 SQL 时,无法实现解析
See: https://github.com/golang-module/ca…
-
## CVE-2023-39410 - High Severity Vulnerability
Vulnerable Library - avro-1.7.7.jar
Avro core components
Library home page: http://www.apache.org/
Path to dependency file: /hadoop-mapreduce-project/…
-
## CVE-2023-3635 - Medium Severity Vulnerability
Vulnerable Library - okio-1.6.0.jar
A modern I/O API for Java
Library home page: https://github.com/square/okio
Path to dependency file: /hadoop-yarn…
-
At our meeting 2023-11-15, we defined our demo target to be a CLI tool which does these four things:
1. scan dependencies used locally (from some combination of derivation graphs, metadata provided…
-
|Wazuh version|Component|Install type|Install method|Platform|
|---|---|---|---|---|
|4.9.1 | Vulnerabiliy Scanner | Manager | Installer/Docker | Debian 12 / Ubuntu 22.04 |
We have two different …