Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Upgrade org.axonframework:axon-spring-boot-starter from 4.1.2 to 4.10.3 #8443

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade org.axonframework:axon-spring-boot-starter from 4.1.2 to 4.10.3 #8443

wants to merge 1 commit into from

Conversation

sanjeevi-mariappan
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade org.axonframework:axon-spring-boot-starter from 4.1.2 to 4.10.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 64 versions ahead of your current version.

  • The recommended version was released 2 months ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-1584063		 589 No Known Exploit
high severity Denial of Service (DoS)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-2388977		 589 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-3091180		 589 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-3182897		 589 Proof of Concept
critical severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-456705		 589 No Known Exploit
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569180		 589 Proof of Concept
high severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-1584064		 589 No Known Exploit
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569181		 589 Proof of Concept
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1040458		 589 Proof of Concept
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569182		 589 Proof of Concept
high severity Remote Code Execution (RCE)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569183		 589 Mature
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569185		 589 Proof of Concept
high severity Denial of Service (DoS)
SNYK-JAVA-COMGOOGLEPROTOBUF-2331703		 589 No Known Exploit
high severity Denial of Service (DoS)
SNYK-JAVA-COMGOOGLEPROTOBUF-3167772		 589 No Known Exploit
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569186		 589 Proof of Concept
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569187		 589 Proof of Concept
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088337		 589 Proof of Concept
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569176		 589 Proof of Concept
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569177		 589 Proof of Concept
high severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569190		 589 Proof of Concept
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569178		 589 Proof of Concept
high severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-5953332		 589 Mature
high severity Server-Side Request Forgery (SSRF)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569191		 589 Proof of Concept
high severity Arbitrary Code Execution
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569179		 589 Proof of Concept
medium severity Insecure XML deserialization
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-460764		 589 Mature
medium severity Information Exposure
SNYK-JAVA-IOGRPC-571957		 589 No Known Exploit
medium severity Arbitrary File Deletion
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1051966		 589 Proof of Concept
medium severity Denial of Service (DoS)
SNYK-JAVA-COMGOOGLEPROTOBUF-3040284		 589 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-1020439		 589 No Known Exploit
medium severity Information Disclosure
SNYK-JAVA-IONETTY-1070799		 589 No Known Exploit
medium severity HTTP Request Smuggling
SNYK-JAVA-IONETTY-1317097		 589 Mature
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088332		 589 Proof of Concept
medium severity Server-Side Request Forgery (SSRF)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1051967		 589 Mature
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088333		 589 Proof of Concept
medium severity HTTP Request Smuggling
SNYK-JAVA-IONETTY-2314893		 589 No Known Exploit
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088328		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088334		 589 Proof of Concept
medium severity Allocation of Resources Without Limits or Throttling
SNYK-JAVA-IONETTY-6483812		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088329		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088330		 589 Proof of Concept
medium severity Information Disclosure
SNYK-JAVA-IONETTY-1082234		 589 No Known Exploit
medium severity Information Exposure
SNYK-JAVA-IONETTY-2812456		 589 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-8367012		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088335		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088336		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088338		 589 Proof of Concept
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1294540		 589 Proof of Concept
medium severity Information Disclosure
SNYK-JAVA-IONETTY-1082235		 589 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JAVA-IONETTY-5725787		 589 No Known Exploit
medium severity Deserialization of Untrusted Data
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088331		 589 Proof of Concept
medium severity Information Disclosure
SNYK-JAVA-IONETTY-1082236		 589 No Known Exploit
medium severity HTTP Request Smuggling
SNYK-JAVA-IONETTY-1083991		 589 Mature
medium severity Denial of Service (DoS)
SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569189		 589 Proof of Concept
medium severity HTTP Request Smuggling
SNYK-JAVA-IONETTY-1089809		 589 No Known Exploit
low severity Information Disclosure
SNYK-JAVA-COMGOOGLEGUAVA-1015415		 589 Proof of Concept
low severity Creation of Temporary File in Directory with Insecure Permissions
SNYK-JAVA-COMGOOGLEGUAVA-5710356		 589 No Known Exploit

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade org.axonframework:axon-spring-boot-starter from 4.1.2 to…
059e2c7 
… 4.10.3

Snyk has created this PR to upgrade org.axonframework:axon-spring-boot-starter from 4.1.2 to 4.10.3.

See this package in maven:
org.axonframework:axon-spring-boot-starter

See this project in Snyk:
https://app.snyk.io/org/jeevi251296/project/ffe5bcbc-9998-4cb7-85a5-c6a542b908cb?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@sanjeevi-mariappan @snyk-bot