-
We're using "com.github.pjfanning:excel-streaming-reader:4.3.1" in our application and since there's a compile dependency to h2 so we have to exclude it explicitly.
We would suggest h2 to be an opt…
-
We have created project in MAUI, and using Black duck for security vulnerabilities while scanning the MAUI application with Black duck it got detected "Vulcan.Maui.Template" package for Android and Ma…
-
# Dependency Information
- **Name:** pkg@maven@org.bouncycastle@bcprov-jdk18on@1.71
- **License:** Bouncy Castle Licence: https://www.bouncycastle.org/licence.html
- **Description:** The Bouncy C…
-
**Description:**
The current version of the sheetjs dependency used in this package is vulnerable to a Prototype Pollution attack (CVE-2023-30533). This vulnerability can be exploited to potentially …
-
A vulnerability is identified in one application and an advisory is generated that corresponds to the application and the vulnerability. Different versions of the package might be vulnerable to the sa…
-
# Report
## Results
- **[ERROR]** **[CVE-2022-24823]** `CVE-2022-24823 - Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` pri…
-
### Before opening, please confirm:
- [X] I have [searched for duplicate or closed issues](https://github.com/aws-amplify/amplify-js/issues?q=is%3Aissue+) and [discussions](https://github.com/aws-am…
-
## CVE-2024-34997 - High Severity Vulnerability
Vulnerable Library - joblib-1.2.0-py3-none-any.whl
Lightweight pipelining with Python functions
Library home page: https://files.pythonhosted.org/pack…
-
## CVE-2024-35195 - Medium Severity Vulnerability
Vulnerable Library - requests-2.31.0-py3-none-any.whl
Python HTTP for Humans.
Library home page: https://files.pythonhosted.org/packages/70/8e/0e2d8…
-
# Microsoft Security Advisory CVE-2024-30105 | .NET Denial of Service Vulnerability
## Executive summary
Microsoft is releasing this security advisory to provide information about a vulnerabilit…