feat: Update dependencies in hale-platform to resolve security issues #32
emanuelaepure10Annotations
10 errors
|
13.[CRITICAL] CVE-2017-5929:
13#L1
logback: Serialization vulnerability in SocketServer and ServerSocketReceiver
|
|
13.[CRITICAL] CVE-2017-5929:
13#L1
logback: Serialization vulnerability in SocketServer and ServerSocketReceiver
|
|
171.[CRITICAL] CVE-2021-23463:
171#L1
XXE injection vulnerability
|
|
171.[CRITICAL] CVE-2021-42392:
171#L1
h2: Remote Code Execution in Console
|
|
171.[CRITICAL] CVE-2022-23221:
171#L1
Loading of custom classes from remote servers through JNDI
|
|
1.[CRITICAL] CVE-2017-11467:
1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
|
|
7.[CRITICAL] CVE-2016-6809:
7#L1
tika: Native deserialization of Java objects in matlab files
|
|
0.[CRITICAL] CVE-2023-25158:
0#L1
GeoTools OGC Filter SQL Injection Vulnerabilities
|
|
1.[CRITICAL] CVE-2022-41853:
1#L1
Untrusted input may lead to RCE attack
|
|
10.[CRITICAL] CVE-2014-4172:
10#L1
cas-client: Bypass of security constraints via URL parameter injection
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
Vulnerability report (HTML)
Expired
|
338 KB |
|