-
**Describe the bug**
log4j 보안취약점 스캔을 통해 확인된 결과입니다.
조치필요여부 확인부탁드립니다.
* 보안취약점 확인
https://github.com/logpresso/CVE-2021-44228-Scanner
* 보안취약점 조치방법
https://www.krcert.or.kr/data/secNoticeView.…
-
## CVE-2017-14735 - Medium Severity Vulnerability
Vulnerable Library - antisamy-1.5.3.jar
The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML
…
-
## CVE-2016-10006 - Medium Severity Vulnerability
Vulnerable Library - antisamy-1.5.3.jar
The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML
…
-
## CVE-2021-35043 - Medium Severity Vulnerability
Vulnerable Library - antisamy-1.5.3.jar
The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML
…
-
## CVE-2018-15758 - High Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://static.…
-
Vulnerable Library - jose4j-0.9.3.jar
The jose.4.j library is a robust and easy to use open source implementation of JSON Web Token (JWT) and the JOSE specification suite (JWS, JWE, and JWK).
I…
-
## CVE-2023-39410 - High Severity Vulnerability
Vulnerable Library - avro-1.11.2.jar
Avro core components
Library home page: https://www.apache.org/
Path to dependency file: /jetty-infinispan/infini…
-
-
## CVE-2016-6814 - High Severity Vulnerability
Vulnerable Library - groovy-all-2.4.4.jar
Groovy: A powerful, dynamic language for the JVM
Library home page: http://groovy-lang.org
Path to dependency…
-
## CVE-2014-0107 - High Severity Vulnerability
Vulnerable Library - xalan-2.7.1.jar
Xalan-Java is an XSLT processor for transforming XML documents into HTML,
text, or other XML document types. I…