mend-for-github-com[bot]
mend-for-github-com[bot]
## CVE-2020-36179 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.6.4.jar, jackson-databind-2.4.5.jar jackson-databind-2.6.4.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path to dependency file:...
## CVE-2019-16869 - High Severity Vulnerability Vulnerable Libraries - netty-codec-http-4.0.42.Final.jar, netty-codec-http-4.1.8.Final.jar netty-codec-http-4.0.42.Final.jar Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers and...
## CVE-2018-19360 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.6.4.jar, jackson-databind-2.4.5.jar jackson-databind-2.6.4.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path to dependency file:...
## CVE-2018-19361 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.7.2.jar, jackson-databind-2.6.4.jar, jackson-databind-2.7.5.jar, jackson-databind-2.8.9.jar, jackson-databind-2.7.8.jar jackson-databind-2.7.2.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path...
## CVE-2019-20444 - High Severity Vulnerability Vulnerable Libraries - netty-3.10.6.Final.jar, netty-codec-http-4.1.8.Final.jar, netty-3.9.2.Final.jar, netty-codec-http-4.0.42.Final.jar netty-3.10.6.Final.jar The Netty project is an effort to provide an asynchronous event-driven network application framework and tools...
## CVE-2018-19362 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.7.8.jar, jackson-databind-2.7.2.jar, jackson-databind-2.7.5.jar, jackson-databind-2.6.4.jar, jackson-databind-2.8.9.jar jackson-databind-2.7.8.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path...
## CVE-2019-20445 - High Severity Vulnerability Vulnerable Libraries - netty-codec-http-4.0.42.Final.jar, netty-codec-http-4.1.8.Final.jar netty-codec-http-4.0.42.Final.jar Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers and...
## CVE-2017-5929 - High Severity Vulnerability Vulnerable Libraries - logback-core-1.1.3.jar, logback-classic-1.1.3.jar logback-core-1.1.3.jar logback-core module Library home page: http://logback.qos.ch Path to dependency file: /samples/client/petstore/java/retrofit2-play24/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.1.3/e3c02049f2dbbc764681b40094ecf0dcbc99b157/logback-core-1.1.3.jar Dependency Hierarchy:...
## CVE-2017-7536 - High Severity Vulnerability Vulnerable Library - hibernate-validator-5.2.4.Final.jar Hibernate's Bean Validation (JSR-303) reference implementation. Library home page: http://hibernate.org/validator Path to dependency file: /samples/client/petstore/java/retrofit2-play25/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.hibernate/hibernate-validator/5.2.4.Final/fb18766b576aa6632bcfe9a20a023cbd52bf9769/hibernate-validator-5.2.4.Final.jar...
## CVE-2018-11307 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.7.2.jar, jackson-databind-2.8.9.jar, jackson-databind-2.7.8.jar, jackson-databind-2.7.5.jar, jackson-databind-2.6.4.jar jackson-databind-2.7.2.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path...