Development: Bump version to 7.6.2
Mend Bolt for GitHub / Mend Security Check
failed
Oct 21, 2024 in 35m 41s
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2024-38819Path to dependency file: /supporting_scripts/analysis-of-endpoint-connections/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-webmvc/6.1.13/ca5f025b133c69026bfe01daa6132d0ac2e4a59f/spring-webmvc-6.1.13.jar Dependency Hierarchy: -> spring-boot-starter-web-3.3.4.jar (Root Library) -> ❌ spring-webmvc-6.1.13.jar (Vulnerable Library) |
 High |
7.5 | spring-webmvc-6.1.13.jar | Upgrade to version: org.springframework:spring-webflux:6.1.14, org.springframework:spring-webmvc:6.1.14 | #9531 |
CVE-2024-1899Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ showdown-2.1.0.tgz (Vulnerable Library) |
 Medium |
5.3 | showdown-2.1.0.tgz | #9333 |
Total libraries scanned: 910
Scan token: 50b77dce75ef42fdadbdfb0ad52cefcc
Loading