ssainz
ssainz
**Summary**. The following flaws were found in WinSW.exe using a third party binary scanner: Improper Output Neutralization for Logs (CWE ID 117) A function call could result in a log...
**Summary**. Following vulnerabilities found by source code scanning tools in WinSW.exe: This call contains a command injection flaw. The argument to the function is constructed using untrusted input. If an...
**Summary**. The following vulnerability is found by third party code scanning tools when scanning the WinSW.exe Cleartext Storage of Sensitive Information in Memory (CWE ID 316)(13 flaws) The application reads...
**Describe the bug** CVE-2020-8908 in Guava v.28.2-jre, should upgrade to v.30.1.1 **To Reproduce** Please check vulnerability section in : [https://github.com/google/guava/issues/4011](https://github.com/google/guava/issues/4011) **Expected behavior** Upgrading to v30.1.1 will mitigate this vulnerability. **Screenshots**...
**Describe the bug** CVE-2022-24823 in Netty .4.1.73.Final. This will also help us catch https://github.com/netty/netty/commit/185f8b2756a36aaa4f973f1a2a025e7d981823f1 **To Reproduce** Steps to reproduce the behavior: 1. Check Apache Drill pom.xml file: https://github.com/apache/drill/blob/master/pom.xml#L123 It ships...
**Describe the bug** [CVE-2018-21234](https://nvd.nist.gov/vuln/detail/CVE-2018-21234) in Hive 3.1.2 **To Reproduce** See also https://issues.apache.org/jira/browse/HIVE-25054 **Expected behavior** Upgrade to Hive 4.0.0
Received vulnerability report from snowflake-jdbc using Apache Tika < 1.28.2. The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on...