Vulnerabilities

 2 via 2 paths

Dependencies

 117

Source

 GitHub

Commit

 939e96d5

Find, fix and prevent vulnerabilities in your code.

Test and protect my applications
Issue type
  • 2
  • 3
Severity
  • 1
  • 4
Status
  • 5
  • 0
  • 0

high severity

Uncontrolled Recursion

  • Vulnerable module: org.apache.commons:commons-lang3
  • Introduced through: org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.9

Detailed paths

  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.9 org.springdoc:springdoc-openapi-starter-webmvc-api@2.8.9 org.springdoc:springdoc-openapi-starter-common@2.8.9 io.swagger.core.v3:swagger-core-jakarta@2.2.30 org.apache.commons:commons-lang3@3.17.0
    Remediation: Upgrade to org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.10.

Overview

Affected versions of this package are vulnerable to Uncontrolled Recursion via the ClassUtils.getClass function. An attacker can cause the application to terminate unexpectedly by providing excessively long input values.

Remediation

Upgrade org.apache.commons:commons-lang3 to version 3.18.0 or higher.

References

Uncontrolled Recursion vulnerability report

medium severity

Improper Validation of Certificate with Host Mismatch

  • Vulnerable module: org.apache.logging.log4j:log4j-core
  • Introduced through: org.apache.logging.log4j:log4j-core@2.17.1

Detailed paths

  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.apache.logging.log4j:log4j-core@2.17.1
    Remediation: Upgrade to org.apache.logging.log4j:log4j-core@2.25.3.

Overview

org.apache.logging.log4j:log4j-core is a logging library for Java.

Affected versions of this package are vulnerable to Improper Validation of Certificate with Host Mismatch due to the lack of TLS hostname verification in the SocketAppender component. An attacker can intercept or redirect log traffic by performing a man-in-the-middle attack if they are able to intercept or redirect network traffic between the client and the log receiver and can present a server certificate issued by a certification authority trusted by the configured trust store or the default Java trust store.

Workaround

This vulnerability can be mitigated by configuring the SocketAppender to use a private or restricted trust root to limit the set of trusted certificates.

Remediation

Upgrade org.apache.logging.log4j:log4j-core to version 2.25.3 or higher.

References

Improper Validation of Certificate with Host Mismatch vulnerability report

medium severity

Dual license: EPL-1.0, LGPL-2.1

  • Module: ch.qos.logback:logback-classic
  • Introduced through: org.springframework.boot:spring-boot-starter-actuator@3.5.12, org.springframework.boot:spring-boot-starter-mail@3.5.12 and others

Detailed paths

  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-actuator@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-mail@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-security@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-test@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter-json@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.9 org.springdoc:springdoc-openapi-starter-webmvc-api@2.8.9 org.springdoc:springdoc-openapi-starter-common@2.8.9 org.springframework.boot:spring-boot-starter-validation@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32

Dual license: EPL-1.0, LGPL-2.1

Dual license: EPL-1.0, LGPL-2.1 vulnerability report

medium severity

Dual license: EPL-1.0, LGPL-2.1

  • Module: ch.qos.logback:logback-core
  • Introduced through: org.springframework.boot:spring-boot-starter-actuator@3.5.12, org.springframework.boot:spring-boot-starter-mail@3.5.12 and others

Detailed paths

  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-actuator@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-mail@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-security@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-test@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter-json@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.9 org.springdoc:springdoc-openapi-starter-webmvc-api@2.8.9 org.springdoc:springdoc-openapi-starter-common@2.8.9 org.springframework.boot:spring-boot-starter-validation@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 ch.qos.logback:logback-classic@1.5.32 ch.qos.logback:logback-core@1.5.32

Dual license: EPL-1.0, LGPL-2.1

Dual license: EPL-1.0, LGPL-2.1 vulnerability report

medium severity

EPL-1.0 license

  • Module: junit:junit
  • Introduced through: org.apache.logging.log4j:log4j-core@2.17.1, org.springframework.boot:spring-boot-starter-actuator@3.5.12 and others

Detailed paths

  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.apache.logging.log4j:log4j-core@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.apache.logging.log4j:log4j-core@2.17.1 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.apache.logging.log4j:log4j-core@2.17.1 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-actuator@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-mail@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-security@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-test@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-actuator@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-mail@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-security@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-test@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter-json@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.boot:spring-boot-starter-web@3.5.12 org.springframework.boot:spring-boot-starter-json@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springframework.cloud:spring-cloud-starter-vault-config@4.3.0 org.springframework.cloud:spring-cloud-vault-config@4.3.0 org.springframework.cloud:spring-cloud-starter@4.3.0 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.9 org.springdoc:springdoc-openapi-starter-webmvc-api@2.8.9 org.springdoc:springdoc-openapi-starter-common@2.8.9 org.springframework.boot:spring-boot-starter-validation@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.jupiter:junit-jupiter-migrationsupport@5.7.2 junit:junit@4.13.2
  • Introduced through: uhawaii-system-its-ti-iam/uh-groupings-api@uhawaii-system-its-ti-iam/uh-groupings-api#939e96d5704d27e00e5d38380addc2d1bc265c8a org.springdoc:springdoc-openapi-starter-webmvc-ui@2.8.9 org.springdoc:springdoc-openapi-starter-webmvc-api@2.8.9 org.springdoc:springdoc-openapi-starter-common@2.8.9 org.springframework.boot:spring-boot-starter-validation@3.5.12 org.springframework.boot:spring-boot-starter@3.5.12 org.springframework.boot:spring-boot-starter-logging@3.5.12 org.apache.logging.log4j:log4j-to-slf4j@2.24.3 org.apache.logging.log4j:log4j-api@2.17.1 org.junit.vintage:junit-vintage-engine@5.7.2 junit:junit@4.13.2

EPL-1.0 license

EPL-1.0 license vulnerability report