Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Apiiro] SCA OSS Vulnerabilities - Critical CVSS score · Critical Risk #206

Open
haimlebo opened this issue Oct 14, 2024 · 0 comments
Open

[Apiiro] SCA OSS Vulnerabilities - Critical CVSS score · Critical Risk #206

haimlebo opened this issue Oct 14, 2024 · 0 comments

Comments

@haimlebo
Copy link
Contributor

@@@

Discovered on: Oct 14, 2024 09:05
Due date: Oct 18, 2024 09:05
Dependency: org.quartz-scheduler:quartz
Version: 2.2.0
Type: Sub dependency
Introduced through:

  • org.broadleafcommerce:broadleaf-profile: 4.0.0-GA > org.broadleafcommerce:broadleaf-common: 4.0.0-GA > org.quartz-scheduler:quartz: 2.2.0

Vulnerabilities

About this package:

External dependency: org.quartz-scheduler:quartz - https://www.quartz-scheduler.org/
Package details: Quartz Enterprise Job Scheduler
Latest version: 2.5.0-rc1
License: Apache-2.0
Insights:

  • Single maintainer - This package is maintained by a single developer
  • Has vulnerabilities - One or more vulnerabilities have been reported for this package

Remediation

org.quartz-scheduler:quartz is a sub-dependency referenced by the following top-level dependencies:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@haimlebo