Vulnerabilities

 2 via 2 paths

Dependencies

 4

Source

 GitHub

Commit

 49e9a24b

Find, fix and prevent vulnerabilities in your code.

Test and protect my applications
Severity
  • 2
Status
  • 2
  • 0
  • 0

high severity

Uncontrolled Recursion

  • Vulnerable module: commons-lang:commons-lang
  • Introduced through: commons-lang:commons-lang@2.6

Detailed paths

  • Introduced through: stringbean/scalafix-rules@stringbean/scalafix-rules#49e9a24bd06a0e67d8d90d2a008a1bcc98d0747a commons-lang:commons-lang@2.6

Overview

Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values.

Remediation

There is no fixed version for commons-lang:commons-lang.

References

Uncontrolled Recursion vulnerability report

high severity

Uncontrolled Recursion

  • Vulnerable module: org.apache.commons:commons-lang3
  • Introduced through: org.apache.commons:commons-lang3@3.13.0

Detailed paths

  • Introduced through: stringbean/scalafix-rules@stringbean/scalafix-rules#49e9a24bd06a0e67d8d90d2a008a1bcc98d0747a org.apache.commons:commons-lang3@3.13.0
    Remediation: Upgrade to org.apache.commons:commons-lang3@3.18.0.

Overview

Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values.

Remediation

Upgrade org.apache.commons:commons-lang3 to version 3.18.0 or higher.

References

Uncontrolled Recursion vulnerability report