charts-embedding-examples
charts-embedding-examples copied to clipboard
[Snyk] Fix for 37 vulnerabilities
Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- java/charts-embedding/pom.xml
Vulnerabilities that will be fixed
With an upgrade:
Severity | Priority Score (*) | Issue | Upgrade | Breaking Change | Exploit Maturity |
---|---|---|---|---|---|
![]() |
571/1000 Why? Mature exploit, Has a fix available, CVSS 3.7 |
Information Exposure SNYK-JAVA-ORGAPACHETOMCAT-30826 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | Mature |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Cross-site Scripting (XSS) SNYK-JAVA-ORGAPACHETOMCAT-30828 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Cross-site Scripting (XSS) SNYK-JAVA-ORGAPACHETOMCAT-30829 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Access Restriction Bypass SNYK-JAVA-ORGAPACHETOMCAT-30830 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
379/1000 Why? Has a fix available, CVSS 3.3 |
Information Exposure SNYK-JAVA-ORGAPACHETOMCAT-30831 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Improper Input Validation SNYK-JAVA-ORGAPACHETOMCAT-30832 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
651/1000 Why? Mature exploit, Has a fix available, CVSS 5.3 |
Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCAT-30834 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | Mature |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Access Restriction Bypass SNYK-JAVA-ORGAPACHETOMCAT-30835 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Improper Authentication SNYK-JAVA-ORGAPACHETOMCAT-30836 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Cryptographic Issues SNYK-JAVA-ORGAPACHETOMCAT-30837 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCAT-30838 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Access Restriction Bypass SNYK-JAVA-ORGAPACHETOMCAT-30839 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Cross-site Request Forgery (CSRF) SNYK-JAVA-ORGAPACHETOMCAT-30840 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Access Restriction Bypass SNYK-JAVA-ORGAPACHETOMCAT-30841 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Improper Authentication SNYK-JAVA-ORGAPACHETOMCAT-30842 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Improper Authentication SNYK-JAVA-ORGAPACHETOMCAT-30843 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
529/1000 Why? Has a fix available, CVSS 6.3 |
Improper Authentication SNYK-JAVA-ORGAPACHETOMCAT-30844 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Information Exposure SNYK-JAVA-ORGAPACHETOMCAT-30845 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Arbitrary File Read SNYK-JAVA-ORGAPACHETOMCAT-30847 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Arbitrary File Read SNYK-JAVA-ORGAPACHETOMCAT-30848 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
589/1000 Why? Has a fix available, CVSS 7.5 |
Denial of Service (DoS) SNYK-JAVA-ORGAPACHETOMCAT-30849 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Directory Traversal SNYK-JAVA-ORGAPACHETOMCAT-30850 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Directory Traversal SNYK-JAVA-ORGAPACHETOMCAT-30851 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
429/1000 Why? Has a fix available, CVSS 4.3 |
Information Exposure SNYK-JAVA-ORGAPACHETOMCAT-30852 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
654/1000 Why? Has a fix available, CVSS 8.8 |
Arbitrary Code Execution SNYK-JAVA-ORGAPACHETOMCAT-30853 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
509/1000 Why? Has a fix available, CVSS 5.9 |
Timing Attack SNYK-JAVA-ORGAPACHETOMCAT-30854 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
589/1000 Why? Has a fix available, CVSS 7.5 |
Access Restriction Bypass SNYK-JAVA-ORGAPACHETOMCAT-30855 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
359/1000 Why? Has a fix available, CVSS 2.9 |
Directory Traversal SNYK-JAVA-ORGAPACHETOMCAT-460328 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
410/1000 Why? Has a fix available, CVSS 3.7 |
Frame injection SNYK-JAVA-ORGAPACHETOMCAT-467247 |
org.apache.tomcat:catalina: 6.0.26 -> 6.0.53 |
No | No Known Exploit |
![]() |
711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8 |
Privilege Escalation SNYK-JAVA-ORGECLIPSEJETTY-1021614 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | Proof of Concept |
![]() |
454/1000 Why? Has a fix available, CVSS 4.8 |
HTTP Request Smuggling SNYK-JAVA-ORGECLIPSEJETTY-1047304 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | No Known Exploit |
![]() |
586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3 |
Denial of Service (DoS) SNYK-JAVA-ORGECLIPSEJETTY-1080611 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | Proof of Concept |
![]() |
696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
Denial of Service (DoS) SNYK-JAVA-ORGECLIPSEJETTY-1090340 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | Proof of Concept |
![]() |
359/1000 Why? Has a fix available, CVSS 2.9 |
Information Exposure SNYK-JAVA-ORGECLIPSEJETTY-1313686 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | No Known Exploit |
![]() |
479/1000 Why? Has a fix available, CVSS 5.3 |
Information Exposure SNYK-JAVA-ORGECLIPSEJETTY-174560 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | No Known Exploit |
![]() |
349/1000 Why? Has a fix available, CVSS 2.7 |
Improper Input Validation SNYK-JAVA-ORGECLIPSEJETTY-2945452 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | No Known Exploit |
![]() |
349/1000 Why? Has a fix available, CVSS 2.7 |
Improper Input Validation SNYK-JAVA-ORGECLIPSEJETTY-2945453 |
com.sparkjava:spark-core: 2.8.0 -> 2.9.4 |
No | No Known Exploit |
(*) Note that the real score may have changed since the PR was raised.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Denial of Service (DoS) 🦉 Directory Traversal 🦉 Access Restriction Bypass 🦉 More lessons are available in Snyk Learn