-
Total Components
-
Vulnerabilities
-
Unique Licenses

Top 10 Vulnerabilities in this SBOM

CVE-2019-20444
Severity: Critical

HttpObjectDecoder.java in Netty before 4.1.44 allows an HTTP header that lacks a colon, which might ...

CVE-2019-17195
Severity: Critical

Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, wh...

CVE-2022-46337
Severity: Critical

A cleverly devised username might bypass LDAP authentication checks. In LDAP-authenticated Derby in...

CVE-2019-20445
Severity: Critical

HttpObjectDecoder.java in Netty before 4.1.44 allows a Content-Length header to be accompanied by a ...

CVE-2022-26612
Severity: Critical

In Apache Hadoop, The unTar function uses unTarUsingJava function on Windows and the built-in tar ut...

CVE-2022-25168
Severity: Critical

Apache Hadoop's FileUtil.unTar(File, File) API does not escape the input file name before being pass...

CVE-2019-10202
Severity: Critical

A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EA...

CVE-2023-44981
Severity: Critical

Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum P...

CVE-2021-37404
Severity: Critical

There is a potential heap buffer overflow in Apache Hadoop libhdfs native code. Opening a file path ...

CVE-2023-31582
Severity: High

jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less....

Vulnerability Distribution

License Distribution

SBOM Summary