Closed itsKedar closed 2 years ago
Checkmarx SCA - Scan Summary & Details
Total Packages Identified: 1570 Scan Risk Score: 9.80
48 High severity vulnerabilities 24 Medium severity vulnerabilities 2 Low severity vulnerabilities View more details on Checkmarx UI
Vulnerability ID | Package | Severity | CVSS score | Publish date | Current version | Recommended version | Link in CxSCA | Reference – NVD link |
---|---|---|---|---|---|---|---|---|
Cx35ef42d7-054c |
ejs | HIGH | 9.8 | 2021-01-22T13:34:00 | 2.7.4 | 3.1.7 | Vulnerability Link | N\A |
CVE-2022-29078 |
ejs | HIGH | 9.8 | 2022-04-25T15:15:00 | 2.7.4 | 3.1.7 | Vulnerability Link | CVE-2022-29078 |
CVE-2021-23436 |
immer | HIGH | 9.8 | 2021-09-01T18:15:00 | 8.0.1 | 9.0.6 | Vulnerability Link | CVE-2021-23436 |
CVE-2021-3757 |
immer | HIGH | 9.8 | 2021-09-02T12:15:00 | 8.0.1 | 9.0.6 | Vulnerability Link | CVE-2021-3757 |
CVE-2021-3918 |
json-schema | HIGH | 9.8 | 2021-11-13T09:15:00 | 0.2.3 | 0.4.0 | Vulnerability Link | CVE-2021-3918 |
CVE-2021-44906 |
minimist | HIGH | 9.8 | 2022-03-17T16:15:00 | 1.2.5 | 1.2.6 | Vulnerability Link | CVE-2021-44906 |
CVE-2022-2564 |
mongoose | HIGH | 9.8 | 2022-07-28T05:14:00 | 5.12.5 | 5.13.15 | Vulnerability Link | CVE-2022-2564 |
CVE-2021-23438 |
mpath | HIGH | 9.8 | 2021-09-01T19:15:00 | 0.8.3 | 0.8.4 | Vulnerability Link | CVE-2021-23438 |
CVE-2021-23440 |
set-value | HIGH | 9.8 | 2021-09-12T13:15:00 | 2.0.1 | 3.0.3 | Vulnerability Link | CVE-2021-23440 |
CVE-2021-42740 |
shell-quote | HIGH | 9.8 | 2021-10-21T15:15:00 | 1.7.2 | 1.7.3 | Vulnerability Link | CVE-2021-42740 |
CVE-2022-0691 |
url-parse | HIGH | 9.8 | 2022-02-21T09:15:00 | 1.5.1 | 1.5.9 | Vulnerability Link | CVE-2022-0691 |
CVE-2022-1650 |
eventsource | HIGH | 9.3 | 2022-05-12T11:15:00 | 1.0.7 | 1.1.1 | Vulnerability Link | CVE-2022-1650 |
CVE-2022-0686 |
url-parse | HIGH | 9.1 | 2022-02-20T13:15:00 | 1.5.1 | 1.5.9 | Vulnerability Link | CVE-2022-0686 |
CVE-2021-37712 |
tar | HIGH | 8.6 | 2021-08-31T17:15:00 | 6.1.0 | 6.1.9 | Vulnerability Link | CVE-2021-37712 |
CVE-2021-37701 |
tar | HIGH | 8.6 | 2021-08-31T17:15:00 | 6.1.0 | 6.1.9 | Vulnerability Link | CVE-2021-37701 |
CVE-2021-37713 |
tar | HIGH | 8.6 | 2021-08-31T17:15:00 | 6.1.0 | 6.1.9 | Vulnerability Link | CVE-2021-37713 |
CVE-2021-32803 |
tar | HIGH | 8.1 | 2021-08-03T19:15:00 | 6.1.0 | 6.1.9 | Vulnerability Link | CVE-2021-32803 |
CVE-2021-32804 |
tar | HIGH | 8.1 | 2021-08-03T19:15:00 | 6.1.0 | 6.1.9 | Vulnerability Link | CVE-2021-32804 |
CVE-2021-43138 |
async | HIGH | 7.8 | 2022-04-06T17:15:00 | 2.6.3 | 2.6.4 | Vulnerability Link | CVE-2021-43138 |
CVE-2021-23424 |
ansi-html | HIGH | 7.5 | 2021-08-18T17:15:00 | 0.0.7 | 0.0.8 | Vulnerability Link | CVE-2021-23424 |
CVE-2021-3807 |
ansi-regex | HIGH | 7.5 | 2021-09-17T07:15:00 | 2.1.1 | 3.0.1 | Vulnerability Link | CVE-2021-3807 |
CVE-2021-3807 |
ansi-regex | HIGH | 7.5 | 2021-09-17T07:15:00 | 4.1.0 | 4.1.1 | Vulnerability Link | CVE-2021-3807 |
CVE-2021-3807 |
ansi-regex | HIGH | 7.5 | 2021-09-17T07:15:00 | 5.0.0 | 5.0.1 | Vulnerability Link | CVE-2021-3807 |
CVE-2021-3749 |
axios | HIGH | 7.5 | 2021-08-31T11:15:00 | 0.21.1 | 0.21.2 | Vulnerability Link | CVE-2021-3749 |
Cxc7705965-e0f0 |
@babel/core | HIGH | 7.5 | 2021-11-16T12:59:00 | 7.12.3 | 7.18.6 | Vulnerability Link | N\A |
Cx89601373-08db |
debug | HIGH | 7.5 | 2020-12-10T17:55:00 | 2.6.9 | 4.3.0 | Vulnerability Link | N\A |
Cx8bc4df28-fcf5 |
debug | HIGH | 7.5 | 2020-12-10T17:14:00 | 2.6.9 | Vulnerability Link | N\A | |
Cx8bc4df28-fcf5 |
debug | HIGH | 7.5 | 2020-12-10T17:14:00 | 3.1.0 | Vulnerability Link | N\A | |
Cx89601373-08db |
debug | HIGH | 7.5 | 2020-12-10T17:55:00 | 3.1.0 | 4.3.0 | Vulnerability Link | N\A |
Cx89601373-08db |
debug | HIGH | 7.5 | 2020-12-10T17:55:00 | 3.2.7 | 4.3.2 | Vulnerability Link | N\A |
Cx8bc4df28-fcf5 |
debug | HIGH | 7.5 | 2020-12-10T17:14:00 | 3.2.7 | Vulnerability Link | N\A | |
Cx8bc4df28-fcf5 |
debug | HIGH | 7.5 | 2020-12-10T17:14:00 | 4.3.1 | Vulnerability Link | N\A | |
CVE-2021-35065 |
glob-parent | HIGH | 7.5 | 2021-07-20T18:11:00 | 3.1.0 | 6.0.1 | Vulnerability Link | CVE-2021-35065 |
CVE-2020-28469 |
glob-parent | HIGH | 7.5 | 2021-01-27T16:27:00 | 3.1.0 | 6.0.1 | Vulnerability Link | CVE-2020-28469 |
CVE-2021-35065 |
glob-parent | HIGH | 7.5 | 2021-07-20T18:11:00 | 5.1.2 | 6.0.1 | Vulnerability Link | CVE-2021-35065 |
Cxdca8e59f-8bfe |
inflight | HIGH | 7.5 | 2020-12-07T10:10:00 | 1.0.6 | Vulnerability Link | N\A | |
CVE-2021-28092 |
is-svg | HIGH | 7.5 | 2021-03-12T22:15:00 | 3.0.0 | 4.3.0 | Vulnerability Link | CVE-2021-28092 |
CVE-2021-29059 |
is-svg | HIGH | 7.5 | 2021-06-21T16:15:00 | 3.0.0 | 4.3.0 | Vulnerability Link | CVE-2021-29059 |
CVE-2022-24771 |
node-forge | HIGH | 7.5 | 2022-03-18T14:15:00 | 0.10.0 | 1.3.0 | Vulnerability Link | CVE-2022-24771 |
CVE-2022-24772 |
node-forge | HIGH | 7.5 | 2022-03-18T14:15:00 | 0.10.0 | 1.3.0 | Vulnerability Link | CVE-2022-24772 |
CVE-2021-33502 |
normalize-url | HIGH | 7.5 | 2021-05-24T16:15:00 | 4.5.0 | 4.5.1 | Vulnerability Link | CVE-2021-33502 |
CVE-2021-3803 |
nth-check | HIGH | 7.5 | 2021-09-17T07:15:00 | 1.0.2 | 2.0.1 | Vulnerability Link | CVE-2021-3803 |
CVE-2021-23343 |
path-parse | HIGH | 7.5 | 2021-05-04T09:15:00 | 1.0.6 | 1.0.7 | Vulnerability Link | CVE-2021-23343 |
CVE-2021-27290 |
ssri | HIGH | 7.5 | 2021-03-12T22:15:00 | 6.0.1 | 6.0.2 | Vulnerability Link | CVE-2021-27290 |
CVE-2022-25858 |
terser | HIGH | 7.5 | 2022-07-15T06:34:00 | 4.8.0 | 4.8.1 | Vulnerability Link | CVE-2022-25858 |
CVE-2022-25858 |
terser | HIGH | 7.5 | 2022-07-15T06:34:00 | 5.6.0 | 5.14.2 | Vulnerability Link | CVE-2022-25858 |
CVE-2021-3777 |
tmpl | HIGH | 7.5 | 2021-09-15T08:15:00 | 1.0.4 | 1.0.5 | Vulnerability Link | CVE-2021-3777 |
Cx347a3da7-ba99 |
node-forge | HIGH | 7.3 | 2021-09-10T10:03:00 | 0.10.0 | 1.3.0 | Vulnerability Link | N\A |
Cx14b19a02-387a |
body-parser | MEDIUM | 6.5 | 2019-02-08T14:08:00 | 1.19.0 | 1.19.1 | Vulnerability Link | N\A |
CVE-2021-23386 |
dns-packet | MEDIUM | 6.5 | 2021-05-20T17:15:00 | 1.3.1 | 1.3.2 | Vulnerability Link | CVE-2021-23386 |
CVE-2022-0155 |
follow-redirects | MEDIUM | 6.5 | 2022-01-10T20:15:00 | 1.13.3 | 1.14.8 | Vulnerability Link | CVE-2022-0155 |
CVE-2022-0122 |
node-forge | MEDIUM | 6.1 | 2022-01-06T05:15:00 | 0.10.0 | 1.3.0 | Vulnerability Link | CVE-2022-0122 |
CVE-2022-0536 |
follow-redirects | MEDIUM | 5.9 | 2022-02-09T11:15:00 | 1.13.3 | 1.14.8 | Vulnerability Link | CVE-2022-0536 |
CVE-2021-23566 |
nanoid | MEDIUM | 5.5 | 2022-01-14T20:15:00 | 3.1.21 | 3.1.31 | Vulnerability Link | CVE-2021-23566 |
CVE-2021-23364 |
browserslist | MEDIUM | 5.3 | 2021-04-28T16:15:00 | 4.14.2 | 4.16.5 | Vulnerability Link | CVE-2021-23364 |
CVE-2021-23364 |
browserslist | MEDIUM | 5.3 | 2021-04-28T16:15:00 | 4.16.3 | 4.16.5 | Vulnerability Link | CVE-2021-23364 |
Cx65603961-769c |
debug | MEDIUM | 5.3 | 2019-01-20T00:00:00 | 2.6.9 | 3.2.7 | Vulnerability Link | N\A |
Cx65603961-769c |
debug | MEDIUM | 5.3 | 2019-01-20T00:00:00 | 3.1.0 | 3.2.7 | Vulnerability Link | N\A |
CVE-2022-33987 |
got | MEDIUM | 5.3 | 2022-06-18T16:59:00 | 9.6.0 | 11.8.5 | Vulnerability Link | CVE-2022-33987 |
CVE-2021-23362 |
hosted-git-info | MEDIUM | 5.3 | 2021-03-23T17:15:00 | 2.8.8 | 2.8.9 | Vulnerability Link | CVE-2021-23362 |
CVE-2022-24773 |
node-forge | MEDIUM | 5.3 | 2022-03-18T14:15:00 | 0.10.0 | 1.3.0 | Vulnerability Link | CVE-2022-24773 |
CVE-2021-23368 |
postcss | MEDIUM | 5.3 | 2021-04-12T14:15:00 | 7.0.21 | 7.0.36 | Vulnerability Link | CVE-2021-23368 |
CVE-2021-23382 |
postcss | MEDIUM | 5.3 | 2021-04-26T16:15:00 | 7.0.21 | 7.0.36 | Vulnerability Link | CVE-2021-23382 |
CVE-2021-23382 |
postcss | MEDIUM | 5.3 | 2021-04-26T16:15:00 | 7.0.35 | 7.0.36 | Vulnerability Link | CVE-2021-23382 |
CVE-2021-23368 |
postcss | MEDIUM | 5.3 | 2021-04-12T14:15:00 | 7.0.35 | 7.0.36 | Vulnerability Link | CVE-2021-23368 |
CVE-2021-23368 |
postcss | MEDIUM | 5.3 | 2021-04-12T14:15:00 | 8.2.8 | 8.2.13 | Vulnerability Link | CVE-2021-23368 |
CVE-2021-23382 |
postcss | MEDIUM | 5.3 | 2021-04-26T16:15:00 | 8.2.8 | 8.2.13 | Vulnerability Link | CVE-2021-23382 |
CVE-2022-0639 |
url-parse | MEDIUM | 5.3 | 2022-02-17T18:15:00 | 1.5.1 | 1.5.9 | Vulnerability Link | CVE-2022-0639 |
CVE-2022-0512 |
url-parse | MEDIUM | 5.3 | 2022-02-14T16:15:00 | 1.5.1 | 1.5.9 | Vulnerability Link | CVE-2022-0512 |
CVE-2021-3664 |
url-parse | MEDIUM | 5.3 | 2021-07-26T12:15:00 | 1.5.1 | 1.5.9 | Vulnerability Link | CVE-2021-3664 |
CVE-2021-32640 |
ws | MEDIUM | 5.3 | 2021-05-25T19:15:00 | 6.2.1 | 6.2.2 | Vulnerability Link | CVE-2021-32640 |
CVE-2021-32640 |
ws | MEDIUM | 5.3 | 2021-05-25T19:15:00 | 7.4.4 | 7.4.6 | Vulnerability Link | CVE-2021-32640 |
Cxda14f253-4e52 |
bluebird | LOW | 3.7 | 2016-04-24T21:00:00 | 3.5.1 | Vulnerability Link | N\A | |
Cxda14f253-4e52 |
bluebird | LOW | 3.7 | 2016-04-24T21:00:00 | 3.7.2 | Vulnerability Link | N\A |
Scan submitted to Checkmarx