pkg:maven/org.apache.syncope/syncope-core
Type
maven
Namespace
org.apache.syncope
Name
syncope-core
Known advisories, vulnerabilities and fixes for org.apache.syncope/syncope-core package.
Critical
1
High
3
Moderate
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | >= 2.1.0, < 2.1.6 >= 2.0.0, < 2.0.15 |
CVE-2020-1961
|
MAVEN:GHSA-4W4P-XWRR-9CRH | Injection in Apache Syncope | high |
2021-06-16T17:18:49
(3 years ago) |
|
Fixed | = 2.1.6 = 2.0.15 |
CVE-2020-1961
|
MAVEN:GHSA-4W4P-XWRR-9CRH | Injection in Apache Syncope | high |
2021-06-16T17:18:49
(3 years ago) |
|
Affected | >= 2.1.0, < 2.1.2 < 2.0.11 |
CVE-2018-17184
|
MAVEN:GHSA-9H9C-F287-C6VP | Improper Control of Interaction Frequency in Apache syncope-core | moderate |
2018-11-06T23:16:18
(5 years ago) |
|
Fixed | = 2.1.2 = 2.0.11 |
CVE-2018-17184
|
MAVEN:GHSA-9H9C-F287-C6VP | Improper Control of Interaction Frequency in Apache syncope-core | moderate |
2018-11-06T23:16:18
(5 years ago) |
|
Affected | >= 2.1.0, < 2.1.2 < 2.0.11 |
CVE-2018-17186
|
MAVEN:GHSA-QFJV-998W-Q48F | Improper Restriction of XML External Entity Reference in org.apache.syncope:syncope-core | high |
2018-11-06T23:15:46
(5 years ago) |
|
Fixed | = 2.1.2 = 2.0.11 |
CVE-2018-17186
|
MAVEN:GHSA-QFJV-998W-Q48F | Improper Restriction of XML External Entity Reference in org.apache.syncope:syncope-core | high |
2018-11-06T23:15:46
(5 years ago) |
|
Affected | >= 2.0.0, < 2.0.8 < 1.2.11 |
CVE-2018-1322
|
MAVEN:GHSA-V3VF-2R98-XW8W | Exposure of Sensitive Information to an Unauthorized Actor in Apache syncope-cope | moderate |
2018-11-06T23:17:25
(5 years ago) |
|
Fixed | = 2.0.8 = 1.2.11 |
CVE-2018-1322
|
MAVEN:GHSA-V3VF-2R98-XW8W | Exposure of Sensitive Information to an Unauthorized Actor in Apache syncope-cope | moderate |
2018-11-06T23:17:25
(5 years ago) |
|
Affected | < 2.1.6 |
CVE-2020-1959
|
MAVEN:GHSA-VJQW-R3WW-WJ2W | Expression Language Injection in Apache Syncope | critical |
2021-06-16T17:18:58
(3 years ago) |
|
Fixed | = 2.1.6 |
CVE-2020-1959
|
MAVEN:GHSA-VJQW-R3WW-WJ2W | Expression Language Injection in Apache Syncope | critical |
2021-06-16T17:18:58
(3 years ago) |
|
Affected | >= 2.0.0, < 2.0.8 < 1.2.11 |
CVE-2018-1321
|
MAVEN:GHSA-XGC9-9W4V-H33H | High severity vulnerability that affects org.apache.syncope:syncope-core | high |
2018-11-06T23:17:27
(5 years ago) |
|
Fixed | = 2.0.8 = 1.2.11 |
CVE-2018-1321
|
MAVEN:GHSA-XGC9-9W4V-H33H | High severity vulnerability that affects org.apache.syncope:syncope-core | high |
2018-11-06T23:17:27
(5 years ago) |