Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update pom.xml #1

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update pom.xml #1

wants to merge 1 commit into from

Conversation

Vadim-Sedletsky
Copy link
Owner

Updated to 2.17.1 log4j

@Vadim-Sedletsky
Copy link
Owner Author

Logo
Checkmarx AST – Scan Summary & Detailsf193f14b-00ca-40c2-bd6d-a057400eecda

New Issues

Severity Issue File / Package Scan Engine
HIGH ALB Listening on HTTP /terraform_examples/positive2.tf: 70 CxKICS
HIGH ALB Listening on HTTP /terraform_examples/positive1.tf: 9 CxKICS
HIGH CVE-2014-0114 Maven-commons-beanutils:commons-beanutils-1.8.0 CxSCA
HIGH CVE-2016-5007 Maven-org.springframework.security:spring-security-config-3.2.4.RELEASE CxSCA
HIGH CVE-2018-1272 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
HIGH CVE-2019-11272 Maven-org.springframework.security:spring-security-core-3.2.4.RELEASE CxSCA
HIGH CVE-2022-22965 Maven-org.springframework:spring-beans-3.2.8.RELEASE CxSCA
HIGH EC2 Instance Has Public IP /terraform_examples/negative2.tf: 83, 96, 109 CxKICS
HIGH EC2 Instance Has Public IP /terraform_examples/positive2.tf: 82, 95, 108 CxKICS
HIGH SQL_Injection /src/Login.java: 22, 23 CxSAST
MEDIUM ALB Not Dropping Invalid Headers /terraform_examples/negative2.tf: 49 CxKICS
MEDIUM ALB Not Dropping Invalid Headers /terraform_examples/positive1.tf: 15 CxKICS
MEDIUM ALB Not Dropping Invalid Headers /terraform_examples/negative1.tf: 15 CxKICS
MEDIUM ALB Not Dropping Invalid Headers /terraform_examples/positive2.tf: 49 CxKICS
MEDIUM CVE-2014-3578 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2019-3795 Maven-org.springframework.security:spring-security-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2020-15250 Maven-junit:junit-4.8.1 CxSCA
MEDIUM CVE-2020-5408 Maven-org.springframework.security:spring-security-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2021-22060 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2021-22096 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2022-22950 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2022-22950 Maven-org.springframework:spring-expression-3.2.8.RELEASE CxSCA
MEDIUM CVE-2022-22968 Maven-org.springframework:spring-context-3.2.8.RELEASE CxSCA
MEDIUM CVE-2022-22970 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2022-22970 Maven-org.springframework:spring-beans-3.2.8.RELEASE CxSCA
MEDIUM CVE-2022-22971 Maven-org.springframework:spring-core-3.2.4.RELEASE CxSCA
MEDIUM CVE-2022-22976 Maven-org.springframework.security:spring-security-core-3.2.4.RELEASE CxSCA
MEDIUM VPC Without Network Firewall /terraform_examples/positive2.tf: 26 CxKICS
MEDIUM VPC Without Network Firewall /terraform_examples/negative2.tf: 26 CxKICS
LOW ALB Deletion Protection Disabled /terraform_examples/positive2.tf: 49 CxKICS
LOW ALB Deletion Protection Disabled /terraform_examples/negative2.tf: 49 CxKICS
LOW ALB Deletion Protection Disabled /terraform_examples/positive1.tf: 15 CxKICS
LOW ALB Deletion Protection Disabled /terraform_examples/negative1.tf: 15 CxKICS
LOW EC2 Instance Using Default Security Group /terraform_examples/positive2.tf: 83, 96, 109 CxKICS
LOW EC2 Instance Using Default Security Group /terraform_examples/negative2.tf: 84, 97, 110 CxKICS
LOW IAM Access Analyzer Not Enabled /terraform_examples/negative1.tf: 1 CxKICS
LOW Shield Advanced Not In Use /terraform_examples/positive2.tf: 49 CxKICS
LOW Shield Advanced Not In Use /terraform_examples/negative1.tf: 15 CxKICS
LOW Shield Advanced Not In Use /terraform_examples/positive1.tf: 15 CxKICS
LOW Shield Advanced Not In Use /terraform_examples/negative2.tf: 49 CxKICS
LOW VPC FlowLogs Disabled /terraform_examples/positive2.tf: 26 CxKICS
LOW VPC FlowLogs Disabled /terraform_examples/negative2.tf: 26 CxKICS

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant