[Snyk] Security upgrade com.amazonaws:aws-java-sdk from 1.12.234 to 1.12.732 by TheRedHatter · Pull Request #346 · TheRedHatter/CE

TheRedHatter · 2024-05-30T03:01:54Z

This PR was automatically created by Snyk using the credentials of a real user.

![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to fix 73 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

api/pacman-api-auth/pom.xml

Vulnerabilities that will be fixed with an upgrade:

Issue	Score	Upgrade
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-608664	780	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `Reachable` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917	705	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Mature`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015	675	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Mature`
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426	670	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `Reachable` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1054588	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056416	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056418	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056420	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056421	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056426	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056427	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585	630	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
HTTP Request Smuggling SNYK-JAVA-IONETTY-543490	600	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
HTTP Request Smuggling SNYK-JAVA-IONETTY-543669	600	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
HTTP Request Smuggling SNYK-JAVA-IONETTY-6056419	600	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
HTTP Request Smuggling SNYK-JAVA-IONETTY-1317097	595	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Mature`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1047324	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056414	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056417	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056419	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056424	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056425	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572300	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572316	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884	563	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
XML External Entity (XXE) Injection SNYK-JAVA-COMFASTERXMLJACKSONCORE-1048302	560	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052449	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052450	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1061931	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-6056407	555	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
HTTP Request Smuggling SNYK-JAVA-IONETTY-469234	550	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-2421244	525	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONDATAFORMAT-1047329	525	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Allocation of Resources Without Limits or Throttling SNYK-JAVA-SOFTWAREAMAZONION-6153869	525	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038424	520	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207	520	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Allocation of Resources Without Limits or Throttling SNYK-JAVA-IONETTY-6483812	490	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `Proof of Concept`
Directory Traversal SNYK-JAVA-COMAMAZONAWS-2952700	475	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Denial of Service (DoS) SNYK-JAVA-IONETTY-1020439	475	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
HTTP Request Smuggling SNYK-JAVA-IONETTY-2314893	475	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Denial of Service (DoS) SNYK-JAVA-IONETTY-5725787	475	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Information Disclosure SNYK-JAVA-IONETTY-1070799	460	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Information Disclosure SNYK-JAVA-IONETTY-1082235	460	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`
Improper Input Validation SNYK-JAVA-ORGAPACHEHTTPCOMPONENTS-1048058	415	com.amazonaws:aws-java-sdk: `1.12.234` -> `1.12.732` `No Path Found` `No Known Exploit`

Important

Check the changes in this PR to ensure they won't cause issues with your project.
Max score is 1000. Note that the real score may have changed since the PR was raised.
This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Directory Traversal
🦉 Deserialization of Untrusted Data
🦉 XML External Entity (XXE) Injection
🦉 More lessons are available in Snyk Learn

[//]: # 'snyk:metadata:{"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"com.amazonaws:aws-java-sdk","from":"1.12.234","to":"1.12.732"}],"env":"prod","issuesToFix":[{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMAMAZONAWS-2952700","priority_score":475,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Directory Traversal"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMAMAZONAWS-2952700","priority_score":475,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Directory Traversal"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMAMAZONAWS-2952700","priority_score":475,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Directory Traversal"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMAMAZONAWS-2952700","priority_score":475,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"6.5","score":325},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Directory Traversal"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1047324","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1048302","priority_score":560,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.2","score":410},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"XML External Entity (XXE) Injection"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052449","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052450","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1054588","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056414","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056416","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056417","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056418","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056419","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056420","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056421","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056424","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056425","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056426","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056427","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1061931","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-2421244","priority_score":525,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038424","priority_score":520,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Denial of Service (DoS)"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426","priority_score":670,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"reachabilityBucket","label":"reachable","score":150},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Denial of Service (DoS)"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207","priority_score":520,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Mature","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917","priority_score":705,"priority_score_factors":[{"type":"exploit","label":"High","score":150},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Mature","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015","priority_score":675,"priority_score_factors":[{"type":"exploit","label":"Functional","score":120},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-572300","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-572316","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-6056407","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-608664","priority_score":780,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"reachabilityBucket","label":"reachable","score":150},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1047324","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1048302","priority_score":560,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.2","score":410},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"XML External Entity (XXE) Injection"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052449","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052450","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1054588","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056414","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056416","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056417","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056418","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056419","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056420","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056421","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056424","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056425","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056426","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056427","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-1061931","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736","priority_score":630,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-2421244","priority_score":525,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"7.5","score":375},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Denial of Service (DoS)"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038424","priority_score":520,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Denial of Service (DoS)"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-3038426","priority_score":670,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"reachabilityBucket","label":"reachable","score":150},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Denial of Service (DoS)"},{"exploit_maturity":"Proof of Concept","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207","priority_score":520,"priority_score_factors":[{"type":"exploit","label":"Proof of Concept","score":75},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"5.9","score":295},{"type":"scoreVersion","label":"v1","score":1}],"severity":"medium","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Mature","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917","priority_score":705,"priority_score_factors":[{"type":"exploit","label":"High","score":150},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"Mature","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015","priority_score":675,"priority_score_factors":[{"type":"exploit","label":"Functional","score":120},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016","priority_score":563,"priority_score_factors":[{"type":"exploit","label":"Unproven","score":8},{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405},{"type":"scoreVersion","label":"v1","score":1}],"severity":"high","title":"Deserialization of Untrusted Data"},{"exploit_maturity":"No Known Exploit","id":"SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676","priority_score":555,"priority_score_factors":[{"type":"fixability","label":true,"score":150},{"type":"cvssScore","label":"8.1","score":405}...

TheRedHatter · 2024-05-30T03:08:19Z

Checkmarx One – Scan Summary & Details – 67a4f3c1-b1cb-4160-925a-71169a264651

New Issues

Issue	Source File / Package	Checkmarx Insight
CVE-2024-29857	Maven-org.bouncycastle:bcprov-jdk15on-1.67	Vulnerable Package
CVE-2024-29857	Maven-org.bouncycastle:bcprov-jdk15on-1.56	Vulnerable Package
CVE-2024-30171	Maven-org.bouncycastle:bcprov-jdk15on-1.67	Vulnerable Package
CVE-2024-30171	Maven-org.bouncycastle:bcprov-jdk15on-1.56	Vulnerable Package
CVE-2024-30172	Maven-org.bouncycastle:bcprov-jdk15on-1.56	Vulnerable Package
CVE-2024-30172	Maven-org.bouncycastle:bcprov-jdk15on-1.67	Vulnerable Package
Cleartext_Submission_of_Sensitive_Information	/lambda-functions/notification-es-logging-service/src/main/java/com/paladincloud/notification_log/config/AuthManager.java: [44](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//lambda-functions/notification-es-logging-service/src/main/java/com/paladincloud/notification_log/config/AuthManager.java# L44)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/lambda-functions/notification-es-logging-service/src/main/java/com/paladincloud/notification_log/config/AuthManager.java: [44](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//lambda-functions/notification-es-logging-service/src/main/java/com/paladincloud/notification_log/config/AuthManager.java# L44)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/commons/autofix/manager/AuthManager.java: [41](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/commons/autofix/manager/AuthManager.java# L41)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-aqua-enricher/src/main/java/com/tmobile/cso/pacman/aqua/jobs/AquaDataImporter.java: [37](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-aqua-enricher/src/main/java/com/tmobile/cso/pacman/aqua/jobs/AquaDataImporter.java# L37)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/commons/autofix/manager/AuthManager.java: [41](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/commons/autofix/manager/AuthManager.java# L41)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/commons/autofix/manager/AuthManager.java: [41](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/commons/autofix/manager/AuthManager.java# L41)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-asset/src/main/java/com/tmobile/pacman/api/asset/service/AssetServiceImpl.java: [856](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-asset/src/main/java/com/tmobile/pacman/api/asset/service/AssetServiceImpl.java# L856)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/executor/PolicyExecutor.java: [141](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/executor/PolicyExecutor.java# L141)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/executor/PolicyExecutor.java: [141](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-rule-engine-2.0/src/main/java/com/tmobile/pacman/executor/PolicyExecutor.java# L141)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java: [281](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java# L281)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java: [72](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java# L72)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java: [67](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java# L67)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java: [281](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java# L281)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java: [72](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java# L72)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java: [67](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java# L67)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/service/AmazonCognitoConnector.java: [121](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/service/AmazonCognitoConnector.java# L121)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-vulnerability/src/main/java/com/tmobile/pacman/api/vulnerability/service/VulnerabilityService.java: [973](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-vulnerability/src/main/java/com/tmobile/pacman/api/vulnerability/service/VulnerabilityService.java# L973)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java: [281](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java# L281)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java: [72](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java# L72)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java: [67](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/azure-discovery/src/main/java/com/tmobile/pacbot/azure/inventory/auth/AzureCredentialProvider.java# L67)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java: [143](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java# L143)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java: [144](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/gcp-discovery/src/main/java/com/tmobile/pacbot/gcp/inventory/auth/GCPCredentialsProvider.java# L144)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java: [391](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java# L391)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java: [373](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java# L373)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java: [391](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java# L391)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java: [373](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java# L373)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java: [391](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java# L391)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java: [373](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AssetGroupUtil.java# L373)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/lambda-functions/notification-template-formatter-service/src/main/java/com/paladincloud/HttpUtil.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//lambda-functions/notification-template-formatter-service/src/main/java/com/paladincloud/HttpUtil.java# L154)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/lambda-functions/notification-send-email-service/src/main/java/com/paladincloud/utils/HttpUtil.java: [152](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//lambda-functions/notification-send-email-service/src/main/java/com/paladincloud/utils/HttpUtil.java# L152)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java: [132](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java# L132)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java: [125](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java# L125)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AuthManager.java: [22](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//jobs/pacman-data-shipper/src/main/java/com/tmobile/cso/pacman/datashipper/util/AuthManager.java# L22)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [125](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L125)	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/TenableAccountServiceImpl.java: [119](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/TenableAccountServiceImpl.java# L119)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [20540](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L20540)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [20540](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L20540)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [20540](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L20540)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [20540](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L20540)	Attack Vector
Client_Potential_XSS	/webapp/src/app/shared/searchable-dropdown/searchable-dropdown.component.ts: [142](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//webapp/src/app/shared/searchable-dropdown/searchable-dropdown.component.ts# L142)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [21841](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L21841)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [21838](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L21838)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [21831](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L21831)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [21828](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L21828)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [21825](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L21825)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [21822](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L21822)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger.js: [63](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger.js# L63)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [20550](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L20550)	Attack Vector
Client_Potential_XSS	/commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js: [20547](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//commons/pac-api-commons/src/main/resources/docs/v1/js/swagger-ui.js# L20547)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [111](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L111)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [106](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L106)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [111](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L111)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [106](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L106)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L154)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L154)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L154)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L154)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [111](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L111)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [106](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L106)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [111](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L111)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [106](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L106)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java: [59](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/controller/AccountsController.java# L59)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java: [89](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AbstractAccountServiceImpl.java# L89)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AwsAccountServiceImpl.java: [213](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AwsAccountServiceImpl.java# L213)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AwsAccountServiceImpl.java: [216](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AwsAccountServiceImpl.java# L216)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java: [155](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java# L155)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java: [158](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/QualysAccountServiceImpl.java# L158)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L154)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [154](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L154)	Attack Vector
Privacy_Violation	/api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java: [151](https://github.com/TheRedHatter/CE/blob/snyk-fix-d84f86294a114604de15e91963eb7405//api/pacman-api-admin/src/main/java/com/tmobile/pacman/api/admin/repository/service/AquaAccountServiceImpl.java# L151)	Attack Vector
Privacy_Violation

More results are available on AST platform

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Security upgrade com.amazonaws:aws-java-sdk from 1.12.234 to 1.12.732#346

[Snyk] Security upgrade com.amazonaws:aws-java-sdk from 1.12.234 to 1.12.732#346
TheRedHatter wants to merge 1 commit intomasterfrom
snyk-fix-d84f86294a114604de15e91963eb7405

TheRedHatter commented May 30, 2024

Uh oh!

TheRedHatter commented May 30, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

TheRedHatter commented May 30, 2024

Snyk has created this PR to fix 73 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

Vulnerabilities that will be fixed with an upgrade:

Uh oh!

TheRedHatter commented May 30, 2024

New Issues

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants