-
Vulnerable Library - spring-boot-starter-web-2.7.1.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/spring-web/5.3.21/spring-we…
-
Issue Level: Low
First Discovered: 10/12/2018
Remediation Date: 2/9/2019
-
## [MongoDB 2.9.1] Vulnerabilities Identified via NVD Database
### Vulnerability Summary
Version **2.9.1** of MongoDB has been flagged with several vulnerabilities according to the **National Vuln…
-
## CVE-2022-40150 - Medium Severity Vulnerability
Vulnerable Library - jettison-1.1.jar
A StAX implementation for JSON.
Path to dependency file: /hadoop-yarn-project/hadoop-yarn/hadoop-yarn-applicat…
-
## CVE-2022-45693 - High Severity Vulnerability
Vulnerable Library - jettison-1.1.jar
A StAX implementation for JSON.
Path to dependency file: /hadoop-yarn-project/hadoop-yarn/hadoop-yarn-applicatio…
-
## CVE-2022-40149 - Medium Severity Vulnerability
Vulnerable Library - jettison-1.1.jar
A StAX implementation for JSON.
Path to dependency file: /hadoop-yarn-project/hadoop-yarn/hadoop-yarn-applicat…
-
In office hours it was requested that we look into extending a virtual table for detecting 32 bit applications running on MacOS, as the deprecation of 32 bit is on the horizon for MacOS. This table fe…
-
### Bug type
Other
### App version
5.4.5
### Device environment
Android 11
### Bug description
When adding at a self-hosted service (e.g. authentik) the user might have access to multiple insta…
-
The existing API for [RSAES-PKCS1-v1_5 decryption](https://datatracker.ietf.org/doc/html/rfc8017#section-7.2.2), the [`RSACryptoServiceProvider.Decrypt`](https://learn.microsoft.com/en-us/dotnet/api/s…
-
As the app is targeted to social workers, they might work with many elderly clients. Some elderly may not have an email. As such, the app should allow user to create a contact without an email, or lea…