Bump PA to use 1.4.0 PA commons lib (#664)
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2024-29857Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.bouncycastle/bcprov-jdk15to18/1.74/b1a91d0d102042e4ec02084384e1b52b73f125ab/bcprov-jdk15to18-1.74.jar Dependency Hierarchy: -> ❌ bcprov-jdk15to18-1.74.jar (Vulnerable Library) |
 High |
7.5 | bcprov-jdk15to18-1.74.jar | Upgrade to version: org.bouncycastle:bcprov-jdk15to18:1.78, org.bouncycastle:bcprov-jdk18on:1.78 | #668 |
CVE-2024-30172Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.bouncycastle/bcprov-jdk15to18/1.74/b1a91d0d102042e4ec02084384e1b52b73f125ab/bcprov-jdk15to18-1.74.jar Dependency Hierarchy: -> ❌ bcprov-jdk15to18-1.74.jar (Vulnerable Library) |
 Medium |
5.9 | bcprov-jdk15to18-1.74.jar | Upgrade to version: org.bouncycastle:bcprov-jdk18on:1.78,org.bouncycastle:bcprov-jdk15to18:1.78, org.bouncycastle:bcprov-jdk14:1.78, BouncyCastle.Cryptography - 2.3.1 | #666 |
CVE-2024-30171Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.bouncycastle/bcprov-jdk15to18/1.74/b1a91d0d102042e4ec02084384e1b52b73f125ab/bcprov-jdk15to18-1.74.jar Dependency Hierarchy: -> ❌ bcprov-jdk15to18-1.74.jar (Vulnerable Library) |
Medium |
5.3 | bcprov-jdk15to18-1.74.jar | Upgrade to version: org.bouncycastle:bcprov-jdk15to18:1.78, org.bouncycastle:bcprov-jdk18on:1.78, BouncyCastle.Cryptography - 2.3.1 | #667 |
Total libraries scanned: 149
Scan token: 8bafa7ceb2734de3863ba789cafc429c