pkg:maven/org.neo4j.procedure/apoc
Type
maven
Namespace
org.neo4j.procedure
Name
apoc
Known advisories, vulnerabilities and fixes for org.neo4j.procedure/apoc package.
Critical
2
High
1
Moderate
2
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | = 4.4.0.0 >= 4.3.0.0, <= 4.3.0.3 >= 4.2.0, < 4.2.10 < 3.5.17 |
CVE-2021-42767
|
MAVEN:GHSA-4MPJ-488R-VH6M | Neo4j Graph Database vulnerable to Path Traversal | critical |
2022-02-01T22:01:14
(2 years ago) |
|
Fixed | = 4.4.0.1 = 4.3.0.4 = 4.2.10 = 3.5.17 |
CVE-2021-42767
|
MAVEN:GHSA-4MPJ-488R-VH6M | Neo4j Graph Database vulnerable to Path Traversal | critical |
2022-02-01T22:01:14
(2 years ago) |
|
Affected | >= 4.4.0.0, < 4.4.0.12 < 4.3.0.12 |
CVE-2022-23532
|
MAVEN:GHSA-5V8V-GWMW-QW97 | org.neo4j.procedure:apoc Path Traversal Vulnerability | high |
2023-01-13T21:28:46
(20 months ago) |
|
Fixed | = 4.4.0.12 = 4.3.0.12 |
CVE-2022-23532
|
MAVEN:GHSA-5V8V-GWMW-QW97 | org.neo4j.procedure:apoc Path Traversal Vulnerability | high |
2023-01-13T21:28:46
(20 months ago) |
|
Affected | < 4.3.0.7 >= 4.4.0.0, < 4.4.0.8 |
CVE-2022-37423
|
MAVEN:GHSA-78F9-745F-278P | Neo4j Graph apoc plugins Partial Path Traversal Vulnerability | moderate |
2022-08-12T15:38:33
(2 years ago) |
|
Fixed | = 4.3.0.7 = 4.4.0.8 |
CVE-2022-37423
|
MAVEN:GHSA-78F9-745F-278P | Neo4j Graph apoc plugins Partial Path Traversal Vulnerability | moderate |
2022-08-12T15:38:33
(2 years ago) |
|
Affected | >= 5.0.0, < 5.5.0 < 4.4.0.14 | MAVEN:GHSA-9VX8-F5C4-862X | XML External Entity (XXE) vulnerability in apoc.import.graphml | moderate |
2023-02-24T17:39:18
(19 months ago) |
||
Fixed | = 5.5.0 = 4.4.0.14 | MAVEN:GHSA-9VX8-F5C4-862X | XML External Entity (XXE) vulnerability in apoc.import.graphml | moderate |
2023-02-24T17:39:18
(19 months ago) |
||
Affected | <= 3.4.0.3 |
CVE-2018-1000820
|
MAVEN:GHSA-R2PP-X4MM-4999 | XML External Entity (XXE) vulnerability in neo4j.procedure:apoc | critical |
2018-12-20T22:02:02
(5 years ago) |
|
Fixed | = 3.4.0.4 |
CVE-2018-1000820
|
MAVEN:GHSA-R2PP-X4MM-4999 | XML External Entity (XXE) vulnerability in neo4j.procedure:apoc | critical |
2018-12-20T22:02:02
(5 years ago) |