aaneja/cve_presto_jdk8.md

Created November 20, 2024 06:52

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/aaneja/58fad3f27d7b443f7264886d7afcce99.js"></script>
Save aaneja/58fad3f27d7b443f7264886d7afcce99 to your computer and use it in GitHub Desktop.

Download ZIP

Raw

cve_presto_jdk8.md

CVE-2024-6763	jetty-http-9.4.54.v20240208.jar	Medium	/opt/presto-server-0.286/plugin/pinot/jetty-http-9.4.54.v20240208.jar
CVE-2012-5783	commons-httpclient-3.1.jar	Medium	/tmp/ws-scm/presto/presto-pinot/pom.xml
CVE-2012-6153	commons-httpclient-3.1.jar	Low	/tmp/ws-scm/presto/presto-pinot/pom.xml

Critical and High CVEs regarding Springboot and Spring web dependencies.

CVE-2022-22965	spring-beans-4.1.6.RELEASE.jar	Critical	Transitive		/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2022-27772	spring-boot-1.2.3.RELEASE.jar	High	Transitive		/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
WS-2021-0170	spring-core-4.1.6.RELEASE.jar	Critical	Transitive		/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2016-1000027	spring-web-4.1.6.RELEASE.jar	Critical	Transitive		/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2018-1272	spring-web-4.1.6.RELEASE.jar	High	Transitive		/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml

CVE-2024-22259	spring-web-4.1.6.RELEASE.jar	High			/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2024-22243	spring-web-4.1.6.RELEASE.jar	high			/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2015-5211	spring-web-4.1.6.RELEASE.jar	Critical			/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2024-22262	spring-web-4.1.6.RELEASE.jar	high			/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml
CVE-2023-20883	spring-boot-autoconfigure-1.2.3.RELEASE.jar	high			/tmp/ws-scm/presto/presto-benchto-benchmarks/pom.xml

Medium CVEs regarding Springboot and Spring web dependencies.

CVE-2022-22970	spring-beans-4.1.6.RELEASE.jar
WS-2016-7112	spring-context-4.1.6.RELEASE.jar
CVE-2022-22968	spring-context-4.1.6.RELEASE.jar
CVE-2018-1199	spring-core-4.1.6.RELEASE.jar
CVE-2022-22970	spring-core-4.1.6.RELEASE.jar
CVE-2021-22096	spring-core-4.1.6.RELEASE.jar
CVE-2021-22060	spring-core-4.1.6.RELEASE.jar
CVE-2022-22950	spring-expression-4.1.6.RELEASE.jar
CVE-2024-38808	spring-expression-4.1.6.RELEASE.jar
CVE-2023-20861	spring-expression-4.1.6.RELEASE.jar
CVE-2023-20863	spring-expression-4.1.6.RELEASE.jar
CVE-2015-3192	spring-web-4.1.6.RELEASE.jar
CVE-2020-5421	spring-web-4.1.6.RELEASE.jar
CVE-2021-22096	spring-web-4.1.6.RELEASE.jar
CVE-2024-38809	spring-web-4.1.6.RELEASE.jar

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment