upgrading spring version to address cve-2024-22243 and cve-2024-22259 #2947

Security Report

4 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE	Severity	CVSS Score	Vulnerable Library	Suggested Fix	Issue
CVE-2024-39684 Vulnerable Source Files: ❌ /sql-odbc/libraries/rapidjson/include/rapidjson/reader.h	High	7.8	rapidjsonv1.1.0		None
CVE-2024-38517 Vulnerable Source Files: ❌ /sql-odbc/libraries/rapidjson/include/rapidjson/reader.h	High	7.8	rapidjsonv1.1.0		None
CVE-2024-35195 Path to dependency file: /sql-cli Path to vulnerable library: /sql-cli Dependency Hierarchy: -> requests_aws4auth-0.9-py2.py3-none-any.whl (Root Library) -> ❌ requests-2.31.0-py3-none-any.whl (Vulnerable Library)	Medium	5.6	requests-2.31.0-py3-none-any.whl	Upgrade to version: requests - 2.32.2	None
CVE-2022-40896 Path to dependency file: /sql-cli Path to vulnerable library: /sql-cli Dependency Hierarchy: -> ❌ Pygments-2.11.1-py3-none-any.whl (Vulnerable Library)	Medium	5.5	Pygments-2.11.1-py3-none-any.whl	Upgrade to version: pygments - 2.15.0	None

Base branch total remaining vulnerabilities: 1
Base branch commit: 7815c96597585c6c47ed6f6189cd1c6c8b56f0a8

Total libraries scanned: 30

Scan token: 7c02e1b6d4a34385916527bc35dcf78b

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

upgrading spring version to address cve-2024-22243 and cve-2024-22259 #2947

upgrading spring version to address cve-2024-22243 and cve-2024-22259 #2947

Security Report

Re-running checks...

upgrading spring version to address cve-2024-22243 and cve-2024-22259 #2947

Are you sure you want to change the base?

upgrading spring version to address cve-2024-22243 and cve-2024-22259

upgrading spring version to address cve-2024-22243 and cve-2024-22259 #2947

Security Report

Re-running checks...