mend-bolt-for-github[bot]
mend-bolt-for-github[bot]
## CVE-2024-38095 - High Severity Vulnerability Vulnerable Libraries - system.formats.asn1.8.0.0.nupkg, system.formats.asn1.7.0.0.nupkg system.formats.asn1.8.0.0.nupkg Provides classes that can read and write the ASN.1 BER, CER, and DER data formats. Commonly Used Types:...
## CVE-2024-38081 - High Severity Vulnerability Vulnerable Library - microsoft.net.sdk.webassembly.pack.8.0.4.nupkg SDK for building and publishing WebAssembly applications. Library home page: https://api.nuget.org/packages/microsoft.net.sdk.webassembly.pack.8.0.4.nupkg Path to dependency file: /src/Client/BlazorBoilerplate.Client/BlazorBoilerplate.Client.csproj Path to vulnerable library:...
## CVE-2024-30171 - Medium Severity Vulnerability Vulnerable Library - bouncycastle.cryptography.2.3.0.nupkg BouncyCastle.NET is a popular cryptography library for .NET Library home page: https://api.nuget.org/packages/bouncycastle.cryptography.2.3.0.nupkg Path to dependency file: /src/Server/BlazorBoilerplate.Server/BlazorBoilerplate.Server.csproj Path to vulnerable...
## CVE-2024-30172 - Medium Severity Vulnerability Vulnerable Library - bouncycastle.cryptography.2.3.0.nupkg BouncyCastle.NET is a popular cryptography library for .NET Library home page: https://api.nuget.org/packages/bouncycastle.cryptography.2.3.0.nupkg Path to dependency file: /src/Server/BlazorBoilerplate.Server/BlazorBoilerplate.Server.csproj Path to vulnerable...
Vulnerable Library - whois-json-2.1.0.tgz Path to dependency file: /package.json Path to vulnerable library: /package.json Found in HEAD commit: 7fcec78a201d54a5dc68fb999368a5fa5ded3702 ## Vulnerabilities | Vulnerability | Severity | CVSS | Dependency |...
## WS-2023-0083 - High Severity Vulnerability Vulnerable Library - openssl-0.10.40.crate OpenSSL bindings Library home page: https://crates.io/api/v1/crates/openssl/0.10.40/download Dependency Hierarchy: - :x: **openssl-0.10.40.crate** (Vulnerable Library) Found in HEAD commit: a5a175063bd51fcbbce0eaba88d1b9b6ad315911 Found in...
## CVE-2023-26964 - Medium Severity Vulnerability Vulnerable Libraries - hyper-0.14.19.crate, hyper-0.13.10.crate, h2-0.3.13.crate, hyper-0.10.16.crate, h2-0.2.7.crate hyper-0.14.19.crate A fast and correct HTTP library. Library home page: https://crates.io/api/v1/crates/hyper/0.14.19/download Dependency Hierarchy: - :x: **hyper-0.14.19.crate**...
## WS-2023-0081 - High Severity Vulnerability Vulnerable Library - openssl-0.10.40.crate OpenSSL bindings Library home page: https://crates.io/api/v1/crates/openssl/0.10.40/download Dependency Hierarchy: - :x: **openssl-0.10.40.crate** (Vulnerable Library) Found in HEAD commit: a5a175063bd51fcbbce0eaba88d1b9b6ad315911 Found in...
## WS-2023-0082 - High Severity Vulnerability Vulnerable Library - openssl-0.10.40.crate OpenSSL bindings Library home page: https://crates.io/api/v1/crates/openssl/0.10.40/download Dependency Hierarchy: - :x: **openssl-0.10.40.crate** (Vulnerable Library) Found in HEAD commit: a5a175063bd51fcbbce0eaba88d1b9b6ad315911 Found in...
## WS-2023-0049 - High Severity Vulnerability Vulnerable Library - ascii-0.8.7.crate ASCII-only equivalents to `char`, `str` and `String`. Library home page: https://crates.io/api/v1/crates/ascii/0.8.7/download Dependency Hierarchy: - multipart-0.18.0.crate (Root Library) - tiny_http-0.6.4.crate -...