Details
-
Task
-
Status: Closed
-
High
-
Resolution: Done
-
None
-
None
Description
As part of https://jira.onap.org/browse/REQ-863 below vulnerable versions were identified by niamhcore for cps-tbdmt. Version revision is required as mentioned in the last column.
| Threat Level | Policy Name | Organization Name | Application Name | Component Name | Date First Seen | Timestamp First Seen | Update To Version (Using latest/ recommended/stable version) |
|
| 10 | Security - Critical vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.springframework : spring-web : 5.2.12.RELEASE | 2021-06-12T06:50:56Z | 1.62348E+12 | 5.3.7 |
|
| 10 | Security - Critical vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.postgresql : postgresql : 42.2.5 | 2021-05-10T05:37:29Z | 1.62063E+12 | 42.2.18 | |
| 10 | Security - Critical vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.glassfish : jakarta.el : 3.0.3 | 2021-05-10T05:37:29Z | 1.62063E+12 | remove jar if not used | |
| 10 | Security - Critical vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.eclipse.jetty : jetty-io : 9.4.35.v20201120 | 2021-05-10T05:37:29Z | 1.62063E+12 | 9.4.40.v20210413 | |
| 6 | Security - Severe vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.eclipse.jetty : jetty-servlets : 9.4.35.v20201120 | 2021-06-12T06:50:56Z | 1.62348E+12 | 9.4.40.v20210413 | |
| 6 | Security - Severe vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.bouncycastle : bcprov-jdk15on : 1.64 | 2021-05-10T05:37:29Z | 1.62063E+12 | remove jar if not used | |
| 6 | Security - Severe vulnerabilities | ONAP | onap-cps-cps-tbdmt | org.eclipse.jetty : jetty-http : 9.4.35.v20201120 | 2021-05-10T05:37:29Z | 1.62063E+12 | 9.4.40.v20210413 | |
| 5 | License - Weak copyleft - LGPL | ONAP | onap-cps-cps-tbdmt | com.google.code.findbugs : annotations : 3.0.1 | 2021-05-10T05:37:29Z | 1.62063E+12 | 3.0.1 is the latest version. com.google.code.findbugs |
Attachments
Issue Links
- relates to
-
-
- Closed
-
