-
**Describe the bug**
See https://www.cve.org/CVERecord?id=CVE-2017-5645
**To Reproduce**
See https://www.cve.org/CVERecord?id=CVE-2017-5645
**Expected behavior**
Not be vulnerable to https://…
-
1. CVE-2017-5645
2. CVE-2021-42550
3. CVE-2020-9488
It is especially important to detect CVE-2021-42550
Maybe in the documentation (readme) such a table will be useful
| Detect | CVE …
-
Vulnerable Library - log4j-core-2.3.jar
The Apache Log4j Implementation
Library home page: http://www.apache.org
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/r…
-
**Vulnerabilities**
DepShield reports that this application's usage of [org.apache.logging.log4j:log4j-core:2.7](https://ossindex.sonatype.org/component/pkg:maven/org.apache.logging.log4j/log4j-core@…
-
### Depshield will be deprecated soon
*Please install our new product, [Sonatype Lift](https://lift.sonatype.com/getting-started?utm_source=github&utm_medium=depshield) with advanced features*
---
*…
-
Vulnerable Library - log4j-core-2.6.2.jar
The Apache Log4j Implementation
Library home page: http://logging.apache.org/log4j/2.x/log4j-core/
Path to dependency file: /biojava-structure/pom.xml
Path …
-
**Vulnerabilities**
DepShield reports that this application's usage of [org.apache.logging.log4j:log4j-core:2.0-beta9](https://ossindex.sonatype.org/component/pkg:maven/org.apache.logging.log4j/log4j…
-
Vulnerable Library - simple-maven-project-sultan-1.1-SNAPSHOT.jar
Path to dependency file: /service/pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/apache/logging/log4j/log…
-
## I expect
pom.xml to check dependencies for vulnerabilities.
-
## I expect
OWASP dependency checks in CI