-
Is there any way to enable auth for revoke method from API? Currently if you know the Serial and AIK you can revoke key. IMHO there should be possibility to enable auth. How you deal with this problem…
-
Currently the newest version in npm is 2.1.12, which depends on `"js-yaml": "~3.1.0",`, but this version of js-yaml has multiple vulnerabilities. `npm audit` outputs:
```
┌───────────────┬─────────…
-
Vulnerable Library - moment-1.0.1.tgz
Moment.js is a javascript date library that helps create, manipulate, and format dates without extending the `Date` prototype.
Library home page: https://regist…
-
## CVE-2023-21144 - High Severity Vulnerability
Vulnerable Library - baseandroid-10.0.0_r34
Android framework classes and services
Library home page: https://android.googlesource.com/platform/frame…
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | Spring Expression Language (SpEL)
Description | Spring Expression Languag…
-
**Description:**
Found 4 vulnerabilities (3 low, 1 moderate) during npm install
=== npm audit security report ===
…
-
We migrated a Odoo 15 installation from vm to another one. The first machine was using an odoo 15 image from around january 2023 the new machine is using an image from 12 july 2023.
The problem th…
-
December 24, 2022 XStream 1.4.20 released
This maintenance release addresses the security vulnerabilities [CVE-2022-40151](https://x-stream.github.io/CVE-2022-40151.html) and [CVE-2022-41966](https…
-
This vulnerability is reported by snyk
Regular Expression Denial of Service (ReDoS)
Vulnerable module: timespan
Introduced through: timespan@2.3.0
https://snyk.io/test/npm/forever/0.15.3?sev…
-
# Description
The `expected_byte_size` passed to a decompression method sometimes directly allocated the specified amount of memory. The expected size is based on information in the file and could be…