Update README.md - Githubissues

Logo Checkmarx SCA - Scan Summary & Details

Cx-SCA Summary

Total Packages Identified: 1570 Scan Risk Score: 9.80

High 47 High severity vulnerabilities Medium 24 Medium severity vulnerabilities Low 2 Low severity vulnerabilities View more details on Checkmarx UI

Cx-SCA vulnerability result overview

Vulnerability ID	Package	Severity	CVSS score	Publish date	Current version	Recommended version	Link in CxSCA	Reference – NVD link
`CVE-2022-29078`	ejs	HIGH	9.8	2022-04-25T15:15:00	2.7.4	3.1.7	Vulnerability Link	CVE-2022-29078
`Cx35ef42d7-054c`	ejs	HIGH	9.8	2021-01-22T13:34:00	2.7.4	3.1.7	Vulnerability Link	N\A
`CVE-2021-3757`	immer	HIGH	9.8	2021-09-02T12:15:00	8.0.1	9.0.6	Vulnerability Link	CVE-2021-3757
`CVE-2021-23436`	immer	HIGH	9.8	2021-09-01T18:15:00	8.0.1	9.0.6	Vulnerability Link	CVE-2021-23436
`CVE-2021-3918`	json-schema	HIGH	9.8	2021-11-13T09:15:00	0.2.3	0.4.0	Vulnerability Link	CVE-2021-3918
`CVE-2021-44906`	minimist	HIGH	9.8	2022-03-17T16:15:00	1.2.5	1.2.6	Vulnerability Link	CVE-2021-44906
`CVE-2022-2564`	mongoose	HIGH	9.8	2022-07-28T05:14:00	5.12.5	6.4.6	Vulnerability Link	CVE-2022-2564
`CVE-2021-23438`	mpath	HIGH	9.8	2021-09-01T19:15:00	0.8.3	0.8.4	Vulnerability Link	CVE-2021-23438
`CVE-2021-23440`	set-value	HIGH	9.8	2021-09-12T13:15:00	2.0.1	3.0.3	Vulnerability Link	CVE-2021-23440
`CVE-2021-42740`	shell-quote	HIGH	9.8	2021-10-21T15:15:00	1.7.2	1.7.3	Vulnerability Link	CVE-2021-42740
`CVE-2022-0691`	url-parse	HIGH	9.8	2022-02-21T09:15:00	1.5.1	1.5.9	Vulnerability Link	CVE-2022-0691
`CVE-2022-1650`	eventsource	HIGH	9.3	2022-05-12T11:15:00	1.0.7	1.1.1	Vulnerability Link	CVE-2022-1650
`CVE-2022-0686`	url-parse	HIGH	9.1	2022-02-20T13:15:00	1.5.1	1.5.9	Vulnerability Link	CVE-2022-0686
`CVE-2021-37713`	tar	HIGH	8.6	2021-08-31T17:15:00	6.1.0	6.1.9	Vulnerability Link	CVE-2021-37713
`CVE-2021-37701`	tar	HIGH	8.6	2021-08-31T17:15:00	6.1.0	6.1.9	Vulnerability Link	CVE-2021-37701
`CVE-2021-37712`	tar	HIGH	8.6	2021-08-31T17:15:00	6.1.0	6.1.9	Vulnerability Link	CVE-2021-37712
`CVE-2021-32803`	tar	HIGH	8.1	2021-08-03T19:15:00	6.1.0	6.1.9	Vulnerability Link	CVE-2021-32803
`CVE-2021-32804`	tar	HIGH	8.1	2021-08-03T19:15:00	6.1.0	6.1.9	Vulnerability Link	CVE-2021-32804
`CVE-2021-43138`	async	HIGH	7.8	2022-04-06T17:15:00	2.6.3	2.6.4	Vulnerability Link	CVE-2021-43138
`CVE-2021-23424`	ansi-html	HIGH	7.5	2021-08-18T17:15:00	0.0.7	0.0.8	Vulnerability Link	CVE-2021-23424
`CVE-2021-3807`	ansi-regex	HIGH	7.5	2021-09-17T07:15:00	2.1.1	3.0.1	Vulnerability Link	CVE-2021-3807
`CVE-2021-3807`	ansi-regex	HIGH	7.5	2021-09-17T07:15:00	4.1.0	4.1.1	Vulnerability Link	CVE-2021-3807
`CVE-2021-3807`	ansi-regex	HIGH	7.5	2021-09-17T07:15:00	5.0.0	5.0.1	Vulnerability Link	CVE-2021-3807
`CVE-2021-3749`	axios	HIGH	7.5	2021-08-31T11:15:00	0.21.1	0.21.2	Vulnerability Link	CVE-2021-3749
`Cx8bc4df28-fcf5`	debug	HIGH	7.5	2020-12-10T17:14:00	2.6.9	Vulnerability Link	N\A
`Cx89601373-08db`	debug	HIGH	7.5	2020-12-10T17:55:00	2.6.9	4.3.0	Vulnerability Link	N\A
`Cx8bc4df28-fcf5`	debug	HIGH	7.5	2020-12-10T17:14:00	3.1.0	Vulnerability Link	N\A
`Cx89601373-08db`	debug	HIGH	7.5	2020-12-10T17:55:00	3.1.0	4.3.0	Vulnerability Link	N\A
`Cx8bc4df28-fcf5`	debug	HIGH	7.5	2020-12-10T17:14:00	3.2.7	Vulnerability Link	N\A
`Cx89601373-08db`	debug	HIGH	7.5	2020-12-10T17:55:00	3.2.7	4.3.2	Vulnerability Link	N\A
`Cx8bc4df28-fcf5`	debug	HIGH	7.5	2020-12-10T17:14:00	4.3.1	Vulnerability Link	N\A
`CVE-2020-28469`	glob-parent	HIGH	7.5	2021-01-27T16:27:00	3.1.0	6.0.1	Vulnerability Link	CVE-2020-28469
`CVE-2021-35065`	glob-parent	HIGH	7.5	2021-07-20T18:11:00	3.1.0	6.0.1	Vulnerability Link	CVE-2021-35065
`CVE-2021-35065`	glob-parent	HIGH	7.5	2021-07-20T18:11:00	5.1.2	6.0.1	Vulnerability Link	CVE-2021-35065
`Cxdca8e59f-8bfe`	inflight	HIGH	7.5	2020-12-07T10:10:00	1.0.6	Vulnerability Link	N\A
`CVE-2021-28092`	is-svg	HIGH	7.5	2021-03-12T22:15:00	3.0.0	4.3.0	Vulnerability Link	CVE-2021-28092
`CVE-2021-29059`	is-svg	HIGH	7.5	2021-06-21T16:15:00	3.0.0	4.3.0	Vulnerability Link	CVE-2021-29059
`CVE-2022-24771`	node-forge	HIGH	7.5	2022-03-18T14:15:00	0.10.0	1.3.0	Vulnerability Link	CVE-2022-24771
`CVE-2022-24772`	node-forge	HIGH	7.5	2022-03-18T14:15:00	0.10.0	1.3.0	Vulnerability Link	CVE-2022-24772
`CVE-2021-33502`	normalize-url	HIGH	7.5	2021-05-24T16:15:00	4.5.0	4.5.1	Vulnerability Link	CVE-2021-33502
`CVE-2021-3803`	nth-check	HIGH	7.5	2021-09-17T07:15:00	1.0.2	2.0.1	Vulnerability Link	CVE-2021-3803
`CVE-2021-23343`	path-parse	HIGH	7.5	2021-05-04T09:15:00	1.0.6	1.0.7	Vulnerability Link	CVE-2021-23343
`CVE-2021-27290`	ssri	HIGH	7.5	2021-03-12T22:15:00	6.0.1	6.0.2	Vulnerability Link	CVE-2021-27290
`CVE-2022-25858`	terser	HIGH	7.5	2022-07-15T06:34:00	4.8.0	4.8.1	Vulnerability Link	CVE-2022-25858
`CVE-2022-25858`	terser	HIGH	7.5	2022-07-15T06:34:00	5.6.0	5.14.2	Vulnerability Link	CVE-2022-25858
`CVE-2021-3777`	tmpl	HIGH	7.5	2021-09-15T08:15:00	1.0.4	1.0.5	Vulnerability Link	CVE-2021-3777
`Cx347a3da7-ba99`	node-forge	HIGH	7.3	2021-09-10T10:03:00	0.10.0	1.3.0	Vulnerability Link	N\A
`Cx14b19a02-387a`	body-parser	MEDIUM	6.5	2019-02-08T14:08:00	1.19.0	1.19.1	Vulnerability Link	N\A
`CVE-2021-23386`	dns-packet	MEDIUM	6.5	2021-05-20T17:15:00	1.3.1	1.3.2	Vulnerability Link	CVE-2021-23386
`CVE-2022-0155`	follow-redirects	MEDIUM	6.5	2022-01-10T20:15:00	1.13.3	1.14.8	Vulnerability Link	CVE-2022-0155
`CVE-2022-0122`	node-forge	MEDIUM	6.1	2022-01-06T05:15:00	0.10.0	1.3.0	Vulnerability Link	CVE-2022-0122
`CVE-2022-0536`	follow-redirects	MEDIUM	5.9	2022-02-09T11:15:00	1.13.3	1.14.8	Vulnerability Link	CVE-2022-0536
`CVE-2021-23566`	nanoid	MEDIUM	5.5	2022-01-14T20:15:00	3.1.21	3.1.31	Vulnerability Link	CVE-2021-23566
`CVE-2021-23364`	browserslist	MEDIUM	5.3	2021-04-28T16:15:00	4.14.2	4.16.5	Vulnerability Link	CVE-2021-23364
`CVE-2021-23364`	browserslist	MEDIUM	5.3	2021-04-28T16:15:00	4.16.3	4.16.5	Vulnerability Link	CVE-2021-23364
`Cx65603961-769c`	debug	MEDIUM	5.3	2019-01-20T00:00:00	2.6.9	3.2.7	Vulnerability Link	N\A
`Cx65603961-769c`	debug	MEDIUM	5.3	2019-01-20T00:00:00	3.1.0	3.2.7	Vulnerability Link	N\A
`CVE-2022-33987`	got	MEDIUM	5.3	2022-06-18T16:59:00	9.6.0	11.8.5	Vulnerability Link	CVE-2022-33987
`CVE-2021-23362`	hosted-git-info	MEDIUM	5.3	2021-03-23T17:15:00	2.8.8	2.8.9	Vulnerability Link	CVE-2021-23362
`CVE-2022-24773`	node-forge	MEDIUM	5.3	2022-03-18T14:15:00	0.10.0	1.3.0	Vulnerability Link	CVE-2022-24773
`CVE-2021-23382`	postcss	MEDIUM	5.3	2021-04-26T16:15:00	7.0.21	7.0.36	Vulnerability Link	CVE-2021-23382
`CVE-2021-23368`	postcss	MEDIUM	5.3	2021-04-12T14:15:00	7.0.21	7.0.36	Vulnerability Link	CVE-2021-23368
`CVE-2021-23382`	postcss	MEDIUM	5.3	2021-04-26T16:15:00	7.0.35	7.0.36	Vulnerability Link	CVE-2021-23382
`CVE-2021-23368`	postcss	MEDIUM	5.3	2021-04-12T14:15:00	7.0.35	7.0.36	Vulnerability Link	CVE-2021-23368
`CVE-2021-23382`	postcss	MEDIUM	5.3	2021-04-26T16:15:00	8.2.8	8.2.13	Vulnerability Link	CVE-2021-23382
`CVE-2021-23368`	postcss	MEDIUM	5.3	2021-04-12T14:15:00	8.2.8	8.2.13	Vulnerability Link	CVE-2021-23368
`CVE-2021-3664`	url-parse	MEDIUM	5.3	2021-07-26T12:15:00	1.5.1	1.5.9	Vulnerability Link	CVE-2021-3664
`CVE-2022-0512`	url-parse	MEDIUM	5.3	2022-02-14T16:15:00	1.5.1	1.5.9	Vulnerability Link	CVE-2022-0512
`CVE-2022-0639`	url-parse	MEDIUM	5.3	2022-02-17T18:15:00	1.5.1	1.5.9	Vulnerability Link	CVE-2022-0639
`CVE-2021-32640`	ws	MEDIUM	5.3	2021-05-25T19:15:00	6.2.1	6.2.2	Vulnerability Link	CVE-2021-32640
`CVE-2021-32640`	ws	MEDIUM	5.3	2021-05-25T19:15:00	7.4.4	7.4.6	Vulnerability Link	CVE-2021-32640
`Cxda14f253-4e52`	bluebird	LOW	3.7	2016-04-24T21:00:00	3.5.1	Vulnerability Link	N\A
`Cxda14f253-4e52`	bluebird	LOW	3.7	2016-04-24T21:00:00	3.7.2	Vulnerability Link	N\A

itsKedar / TodoList_mern

Update README.md #33

Cx-SCA Summary

Cx-SCA vulnerability result overview