You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Vulnerable Package issue exists @ Maven-commons-collections:commons-collections-3.2.1 in branch main
The framework Apache Commons Collections before 4.3 is vulnerable to
Stack Overflow. The function add() in the file src/main/java/org/apache/commons/collections4/list/SetUniqueList.java throws a StackOverflowError when the add() method is called with its own list.
To resolve this issue - upgrade to version 4.3. Please note: the package name was changed to org.apache.commons:commons-collections4 on version 4.0.
Vulnerable Package issue exists @ Maven-commons-collections:commons-collections-3.2.1 in branch main
The framework Apache Commons Collections before 4.3 is vulnerable to
Stack Overflow. The function
add()
in the filesrc/main/java/org/apache/commons/collections4/list/SetUniqueList.java
throws a StackOverflowError when theadd()
method is called with its own list.To resolve this issue - upgrade to version 4.3. Please note: the package name was changed to org.apache.commons:commons-collections4 on version 4.0.
Namespace: EylamCX
Repository: -New-Results-Test-10
Repository Url: https://github.com/EylamCX/-New-Results-Test-10
CxAST-Project: EylamCX/-New-Results-Test-10
CxAST platform scan: efbec5d3-4387-41eb-83bb-6087fc1c3343
Branch: main
Application: -New-Results-Test-10
Severity: HIGH
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-674
Addition Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: NONE
Availability impact: HIGH
References
Issue
Pull request
Commit
The text was updated successfully, but these errors were encountered: