pkg:maven/io.ratpack/ratpack-session
Type
maven
Namespace
io.ratpack
Name
ratpack-session
Known advisories, vulnerabilities and fixes for io.ratpack/ratpack-session package.
Moderate
2
Low
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 1.9.0 |
CVE-2021-29480
|
MAVEN:GHSA-2CC5-23R7-VC4V | Ratpack's default client side session signing key is highly predictable | moderate |
2021-07-01T17:02:26
(3 years ago) |
|
Fixed | = 1.9.0 |
CVE-2021-29480
|
MAVEN:GHSA-2CC5-23R7-VC4V | Ratpack's default client side session signing key is highly predictable | moderate |
2021-07-01T17:02:26
(3 years ago) |
|
Affected | < 1.6.1 |
CVE-2019-11808
|
MAVEN:GHSA-54MG-VGRP-MWX9 | Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Ratpack | low |
2019-05-14T04:01:37
(5 years ago) |
|
Fixed | = 1.6.1 |
CVE-2019-11808
|
MAVEN:GHSA-54MG-VGRP-MWX9 | Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Ratpack | low |
2019-05-14T04:01:37
(5 years ago) |
|
Affected | < 1.9.0 |
CVE-2021-29481
|
MAVEN:GHSA-PHJ8-4CQ3-794G | Unencrypted storage of client side sessions | moderate |
2021-07-01T17:02:13
(3 years ago) |
|
Fixed | = 1.9.0 |
CVE-2021-29481
|
MAVEN:GHSA-PHJ8-4CQ3-794G | Unencrypted storage of client side sessions | moderate |
2021-07-01T17:02:13
(3 years ago) |