36 matches found
ai.timefold.solver:timefold-solver-quarkus-benchmark-integration-test (>=1.3.0 <=1.6.0), ai.timefold.solver:timefold-solver-quarkus-devui-integration-test (>=1.3.0 <=1.6.0) +2339 more potentially affected by CVE-2024-1023 via io.vertx:vertx-core (>=4.4.5 <=4.4.6)
io.vertx:vertx-core MAVEN version =4.4.5, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =23.3.4, =23.3.4, =23.3.4, =23.3.4, =23.3.4, =23.9.0, =23.3.4, =23.3.4, =23.3.4, =23.9.1 and more Source cves: CVE-2024-1023 Source advisory: OSV:GHSA-5667-3WCH-7Q7W...
am.ik.home:uaa-client (>=1.0.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.0.0 <=1.9.0) +922 more potentially affected by CVE-2023-34036 via org.springframework.hateoas:spring-hateoas (>=0.12.0.RELEASE <=1.5.4)
org.springframework.hateoas:spring-hateoas MAVEN version =0.12.0.RELEASE, =1.0.0, =1.0.0, =1.0.0, =1.1.0, =1, =1, =1, =1, =1, =1, =1.0.1.RELEASE, =1.0.0.RELEASE, =1.0.1.RELEASE, =1.1.8.RELEASE, =1.1.5.RELEASE, =2.0.9.RELEASE and more Source cves: CVE-2023-34036 Source advisory:...
be.atbash.test:integration-testing (>=1.0.0 <=1.1.0), com.codbex.chronos:codbex-chronos-platform (>=0.3.0 <=0.5.4) +1091 more potentially affected by CVE-2022-46363 via org.apache.cxf:cxf-core (>=3.5.0 <=3.5.4)
org.apache.cxf:cxf-core MAVEN version =3.5.0, =1.0.0, =0.3.0, =0.3.0, =0.5.3, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.3.0 and more Source cves: CVE-2022-46363 Source advisory: OSV:GHSA-3W37-5P3P-JV92...
GHSA-MV8X-668M-53FG Elrond-go has improper initialization
Impact Read only calls between contracts can generate smart contracts results. For example, if contract A calls in read only mode contract B and the called function will make changes upon the contract's B state, the state will be altered for contract B as if the call was not made in the read-only...
Elrond-go has improper initialization
Impact Read only calls between contracts can generate smart contracts results. For example, if contract A calls in read only mode contract B and the called function will make changes upon the contract's B state, the state will be altered for contract B as if the call was not made in the read-only...
elrond-go MultiESDTNFTTransfer call on a SC address with missing function name
Impact Anyone who uses elrond-go to process blocks historical or actual that contains a transaction like this: MultiESDTNFTTransfer@01@54444558544b4b5955532d323631626138@00@0793afc18c8da2ca@ mind the missing function name after the last @ Basic functionality like p2p messaging, storage, API...
GHSA-QF7J-25G9-R63F elrond-go MultiESDTNFTTransfer call on a SC address with missing function name
Impact Anyone who uses elrond-go to process blocks historical or actual that contains a transaction like this: MultiESDTNFTTransfer@01@54444558544b4b5955532d323631626138@00@0793afc18c8da2ca@ mind the missing function name after the last @ Basic functionality like p2p messaging, storage, API...
MAL-2022-515 Malicious code in @porting-assistant/integration-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 757fb325921aaf211808046101e53811f0ac571b5b1f25882a8ea84b4e2ab05c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
com.clever-cloud:biscuit-pulsar (>=1.1.13 <=2.3.2), com.clever-cloud:integration-test (>=1.2.0 <=1.4.6) +1 more potentially affected by CVE-2022-31053 via com.clever-cloud:biscuit-java (>=0.2.7 <=1.1.4)
com.clever-cloud:biscuit-java MAVEN version =0.2.7, =1.1.13, =1.2.0, =1.5.0, =1.5.5 Source cves: CVE-2022-31053 Source advisory: OSV:GHSA-75RW-34Q6-72CR...
com.gitblit.fathom:fathom-integration-test (>=0.5.0 <=1.0.1), com.gitblit.fathom:fathom-mailer (>=0.5.0 <=1.0.1) +72 more potentially affected by CVE-2018-18240 via ro.pippo:pippo-core (>=0.4.0 <=1.11.0)
ro.pippo:pippo-core MAVEN version =0.4.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.2, =0.8.1, =0.8.4, =0.8.0, =0.8.0, =0.2.3, =0.4.0, =0.4.0, =1.11.0 and more Source cves: CVE-2018-18240 Source advisory: OSV:GHSA-H892-X453-86WC...
am.ik.home:uaa-client (>=1.3.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.3.0 <=1.9.0) +1073 more potentially affected by CVE-2017-4995 via org.springframework.security:spring-security-core (>=4.2.0.RELEASE <=4.2.2.RELEASE)
org.springframework.security:spring-security-core MAVEN version =4.2.0.RELEASE, =1.3.0, =1.3.0, =1.3.0, =1.1.1, =0.2.0, =1.0.3, =3.0.3, =3.0.3, =3.0.3, =3.0.5, =A.1.1.1, =A.2.0.0, =A.1.1.1, =A.2.0.0, =A.2.0.0.RC1 and more Source cves: CVE-2017-4995 Source advisory: OSV:GHSA-VHRG-V3CV-P247...
org.apache.hadoop:hadoop-ozone-dist (>=0.4.0-alpha <=0.4.1-alpha), org.apache.hadoop:hadoop-ozone-insight (>=0.5.0-beta <=1.1.0) +3 more potentially affected by CVE-2021-39236 via org.apache.hadoop:hadoop-ozone-ozone-manager (>=0.4.0-alpha <=1.1.0)
org.apache.hadoop:hadoop-ozone-ozone-manager MAVEN version =0.4.0-alpha, =0.4.0-alpha, =0.5.0-beta, =0.4.0-alpha, =0.4.1-alpha, =0.4.0-alpha, =1.1.0 Source cves: CVE-2021-39236 Source advisory: OSV:GHSA-5993-WWPG-M92C...
org.apache.livy:livy-assembly (=0.7.0-incubating), org.apache.livy:livy-coverage-report (=0.7.0-incubating) +2 more potentially affected by CVE-2021-26544 via org.apache.livy:livy-server (=0.7.0-incubating)
org.apache.livy:livy-server MAVEN version =0.7.0-incubating is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.livy:livy-server and may be impacted: - org.apache.livy:livy-assembly =0.7.0-incubating - org.apache.livy:livy-coverage-report...
org.apache.camel.kafkaconnector:camel-robotframework-kafka-connector (>=0.1.0 <=0.3.0), org.apache.camel.quarkus:camel-quarkus-integration-test-robotframework (>=2.3.0 <=2.16.0) +5 more potentially affected by CVE-2020-11994 via org.apache.camel:camel-robotframework (>=3.0.0-RC2 <=3.3.0)
org.apache.camel:camel-robotframework MAVEN version =3.0.0-RC2, =0.1.0, =2.3.0, =2.0.0, =2.0.0, =2.0.0, =3.0.0, =3.0.0-RC2, =3.0.0-RC3 Source cves: CVE-2020-11994 Source advisory: OSV:GHSA-9VFJ-5G7H-4P24...
ai.h2o:h2o-orc-parser (>=3.18.0.9 <=3.46.0.11), com.linkedin.tony:tony-cli (>=0.1.5 <=0.3.3) +26 more potentially affected by CVE-2015-7521 via org.apache.hive:hive-exec (>=1.1.0 <=1.2.1)
org.apache.hive:hive-exec MAVEN version =1.1.0, =3.18.0.9, =0.1.5, =0.1.5, =6.5.0, =6.5.0, =6.5.0, =6.5.0, =0.14.0, =0.14.0, =0.15.0, =0.15.0, =0.15.1 and more Source cves: CVE-2015-7521 Source advisory: OSV:GHSA-83R3-C79W-F6WC...
am.ik.home:uaa-client (>=1.0.0 <=1.9.0), am.ik.home:uaa-integration-test (>=1.0.0 <=1.9.0) +509 more potentially affected by CVE-2018-1260 via org.springframework.security.oauth:spring-security-oauth2 (>=2.0.0.RELEASE <=2.0.14.RELEASE)
org.springframework.security.oauth:spring-security-oauth2 MAVEN version =2.0.0.RELEASE, =1.0.0, =1.0.0, =1.0.0, =0.1.0, =1.0.0, =A.1.1.0, =A.1.1.0, =A.1.1.0, =A.1.1.0, =3.0.0, =3.0.0, =3.0.0, =3.0.0, =3.0.1.11 - com.17jee:e-security-token =3.0.1.11 and more Source cves: CVE-2018-1260 Source...