TencentOS Server 4: testng (TSSA-2025:0122)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0122 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

SUSE CVE-2022-4065

A vulnerability was found in cbeust testng 7.5.0/7.6.0/7.6.1/7.7.0. It has been declared as critical. Affected by this vulnerability is the function testngXmlExistsInJar of the file testng-core/src/main/java/org/testng/JarFileUtils.java of the component XML File Parser. The manipulation leads to...

app.getxray:xray-testng-extensions (>=0.1.0 <=0.2.0-beta), com.actiontestscript:ats-automated-testing (>=2.3.6 <=2.5.8) +143 more potentially affected by CVE-2022-4065 via org.testng:testng (>=7.6.0 <=7.6.1)

org.testng:testng MAVEN version =7.6.0, =0.1.0, =2.3.6, =2.4.13, =0.33.0, =1.3, =0.0.2, =0.0.2, =0.0.2, =3.0.0, =2.7.0, =2.8.1 and more Source cves: CVE-2022-4065 Source advisory: OSV:GHSA-RC2Q-X9MF-W3VF...

CodeLineCounter:lineCounterPlugin (=1.1.4), app.getxray:xray-testng-extensions (>=0.3.0 <=0.5.0) +3524 more potentially affected by CVE-2022-4065 via org.testng:testng (>=6.13 <=7.5)

org.testng:testng MAVEN version =6.13, =0.3.0, =0.0.4, =0.3.0, =0.9.0, =0.26.0, =0.20.0, =0.9.0, =0.23.0, =0.28.0 - br.com.objectos.orm:testing =0.2.0 - br.com.objectos.oss-java11:objectos-testing =1.0.0 - br.com.objectos.oss-java16:objectos-testing =1.0.0 and more Source cves: CVE-2022-4065 Sour...

CVE-2022-4065

A vulnerability was found in cbeust testng 7.5.0/7.6.0/7.6.1/7.7.0. It has been declared as critical. Affected by this vulnerability is the function testngXmlExistsInJar of the file testng-core/src/main/java/org/testng/JarFileUtils.java of the component XML File Parser. The manipulation leads to...

com.crawljax.plugins:testcasegenerator (=4.1), com.crawljax:crawljax-examples (=4.1) +25 more potentially affected by unknown CVE via org.testng:testng (>=7.0.0-beta1 <=7.0.0-beta3)

org.testng:testng MAVEN version =7.0.0-beta1, =1.0, =1.0.0, =1.0, =1.0, =5.15, =0.1.20, =0.1.20, =0.1.20, =0.1.20, =0.1.20, =0.1.20, =0.1.20, =0.1.20, =1.0.0 and more Source cves: unknown CVE Source advisory: SNYK:JAVA-ORGTESTNG-174823...

Unsafe Dependency Resolution

Overview org.testng:testng is a testing framework for the JVM. Affected versions of this package are vulnerable to Unsafe Dependency Resolution due to resolving dependencies over an insecure channel http. If the build occurred over an insecure connection, a malicious user could have perform a...