Update dependency com.google.guava:guava to v18.0.0.redhat-1 #4
Security Report
| CVE | Severity |  CVSS Score |
Exploit Maturity | EPSS | Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|---|---|
CVE-2018-14721Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
 Critical |
10.0 | Not Defined | 1.0% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.7.9.5,2.8.11.3,2.9.7 | None |
CVE-2020-9548Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.4% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.7,2.8.11.6,2.9.10.4 | None |
CVE-2020-9547Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.70000005% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.3 | None |
CVE-2020-9546Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.70000005% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.3 | None |
CVE-2020-8840Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 3.0% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.3 | None |
CVE-2019-20330Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.6% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.7,2.8.11.5,2.9.10.2 | None |
CVE-2019-17531Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 1.0% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.8.11.5,2.9.10.1 | None |
CVE-2019-17267Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 1.4000001% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.8.11.5,2.9.10 | None |
CVE-2019-16943Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.7.9.7,2.8.11.5,2.9.10.1 | None |
CVE-2019-16942Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.7.9.7,2.8.11.5,2.9.10.1 | None |
CVE-2019-16335Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.10 | None |
CVE-2019-14893Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 2.5% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 | None |
CVE-2019-14892Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.4% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.6.7.3,2.7.9.7,2.8.11.5,2.9.10 | None |
CVE-2019-14540Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.6% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.8.11.5,2.9.10,2.10.0.pr3,2.11.0.rc1 | None |
CVE-2019-14379Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 1.0% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.9.2 | None |
CVE-2019-10202Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 1.9% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.0.0 | None |
CVE-2018-7489Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 93.7% | jackson-databind-2.9.0.jar | Upgrade to version: 2.8.11.1,2.9.5 | None |
CVE-2018-19362Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.8 | None |
CVE-2018-19361Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.8 | None |
CVE-2018-19360Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.8 | None |
CVE-2018-14720Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.7 | None |
CVE-2018-14719Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 1.0% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.7 | None |
CVE-2018-14718Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 3.7% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.7.9.5,2.8.11.3,2.9.7 | None |
CVE-2018-11307Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 1.3000001% | jackson-databind-2.9.0.jar | Upgrade to version: jackson-databind-2.9.6 | None |
CVE-2017-17485Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 14.0% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.4 | None |
CVE-2017-15095Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Critical |
9.8 | Not Defined | 2.6000001% | jackson-databind-2.9.0.jar | Upgrade to version: 2.8.10,2.9.1 | None |
CVE-2020-11113Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
 High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4;2.10.0 | None |
CVE-2020-11112Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4,2.10.0 | None |
CVE-2020-11111Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4,2.10.0 | None |
CVE-2020-10969Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.8.11.6;com.fasterxml.jackson.core:jackson-databind:2.7.9.7 | None |
CVE-2020-10968Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: jackson-databind-2.9.10.4 | None |
CVE-2020-10673Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 | None |
CVE-2020-10672Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.8 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: jackson-databind-2.9.10.4 | None |
CVE-2022-1471Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
High |
8.3 | Not Defined | 2.1% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:2.0 | None |
CVE-2021-20190Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.4% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind-2.9.10.7 | None |
CVE-2020-36189Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36188Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36187Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36186Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36185Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36184Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36183Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36182Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36181Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36180Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-36179Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.4% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.8 | None |
CVE-2020-24750Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.70000005% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.6 | None |
CVE-2020-24616Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 1.2% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.10.6 | None |
CVE-2020-14195Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 3.4% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.5 | None |
CVE-2020-14062Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 7.2% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 | None |
CVE-2020-14061Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 4.7% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 | None |
CVE-2020-14060Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 13.500001% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.10.0 | None |
CVE-2020-11620Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 4.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 | None |
CVE-2020-11619Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 5.0% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 | None |
CVE-2020-10650Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 0.8% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.9.10.4 | None |
CVE-2018-5968Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
8.1 | Not Defined | 9.3% | jackson-databind-2.9.0.jar | Upgrade to version: 2.8.11.1, 2.9.4 | None |
CVE-2024-47554Path to dependency file: /pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/commons-io/commons-io/2.4/commons-io-2.4.jar Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ commons-io-2.4.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.0% | commons-io-2.4.jar | Upgrade to version: commons-io:commons-io:2.14.0 | None |
CVE-2022-42004Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.13.4 | None |
CVE-2022-42003Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.12.7.1,2.13.4.2 | None |
CVE-2022-25857Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.2% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.31 | None |
CVE-2020-36518Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.3% | jackson-databind-2.9.0.jar | Upgrade to version: com.fasterxml.jackson.core:jackson-databind:2.12.6.1,2.13.2.1 | None |
CVE-2019-14439Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.2% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.9.2 | None |
CVE-2019-12086Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.4% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.9 | None |
CVE-2018-12023Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.6% | jackson-databind-2.9.0.jar | Upgrade to version: 2.7.9.4, 2.8.11.2, 2.9.6 | None |
CVE-2018-12022Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 0.5% | jackson-databind-2.9.0.jar | Upgrade to version: 2.7.9.4, 2.8.11.2, 2.9.6 | None |
CVE-2017-18640Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
High |
7.5 | Not Defined | 1.9% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.26 | None |
CVE-2022-38752Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
 Medium |
6.5 | Not Defined | 0.5% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.32 | None |
CVE-2022-38751Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
Medium |
6.5 | Not Defined | 0.2% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.31 | None |
CVE-2022-38750Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
Medium |
6.5 | Not Defined | 0.1% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.31 | None |
CVE-2022-38749Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
Medium |
6.5 | Not Defined | 0.2% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.31 | None |
CVE-2019-12814Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Medium |
5.9 | Not Defined | 1.5% | jackson-databind-2.9.0.jar | Upgrade to version: 2.7.9.6, 2.8.11.4, 2.9.9.1, 2.10.0 | None |
CVE-2019-12384Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ jackson-databind-2.9.0.jar (Vulnerable Library) |
Medium |
5.9 | Not Defined | 53.3% | jackson-databind-2.9.0.jar | Upgrade to version: 2.9.9.1 | None |
CVE-2018-10237Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ guava-18.0.0.redhat-1.jar (Vulnerable Library) |
Medium |
5.9 | Not Defined | 1.3000001% | guava-18.0.0.redhat-1.jar | Upgrade to version: 24.1.1-jre, 24.1.1-android | None |
CVE-2022-41854Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ snakeyaml-1.15.jar (Vulnerable Library) |
Medium |
5.8 | Not Defined | 0.6% | snakeyaml-1.15.jar | Upgrade to version: org.yaml:snakeyaml:1.32 | None |
CVE-2023-2976Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ guava-18.0.0.redhat-1.jar (Vulnerable Library) |
Medium |
5.5 | Not Defined | 0.0% | guava-18.0.0.redhat-1.jar | Upgrade to version: com.google.guava:guava:32.0.1-android,32.0.1-jre | None |
CVE-2021-29425Path to dependency file: /pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/commons-io/commons-io/2.4/commons-io-2.4.jar Dependency Hierarchy: -> raml-parser-2-1.0.14.jar (Root Library) -> yagi-1.0.14.jar -> ❌ commons-io-2.4.jar (Vulnerable Library) |
Medium |
4.8 | Not Defined | 0.2% | commons-io-2.4.jar | Upgrade to version: commons-io:commons-io:2.7 | None |
CVE-2020-8908Path to dependency file: /pom.xml Path to vulnerable library: /pom.xml Dependency Hierarchy: -> ❌ guava-18.0.0.redhat-1.jar (Vulnerable Library) |
 Low |
3.3 | Not Defined | 0.1% | guava-18.0.0.redhat-1.jar | Upgrade to version: org.apache.servicemix.bundles:org.apache.servicemix.bundles.guava - 11_1;com.google.guava:guava - 30.0-android | None |
Total libraries scanned: 30
Scan token: 517c560dc0c5456eac21ac7aeac52130