checkov vulnerabilities

Known vulnerabilities in the checkov package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
L Missing Release of Resource after Effective Lifetime	<3.2.432-r0
L GHSA-27mf-ghqm-j3j8	<3.2.432-r0
L GHSA-5rjg-fvgr-3xxf	<3.2.432-r0
L Improper Neutralization	<3.2.432-r0
H Directory Traversal	<3.2.432-r0
L Protection Mechanism Failure	<3.2.432-r0
L GHSA-q2x7-8rv6-6q7h	<3.2.432-r0
L GHSA-cpwx-vrp4-4pq7	<3.2.432-r0
L HTTP Request Smuggling	<3.2.432-r0
L CVE-2024-52304	<3.2.432-r0
L GHSA-8495-4g3g-x7pr	<3.2.432-r0
L GHSA-vqfr-h8mv-ghfj	<3.2.432-r0
L GHSA-gmj6-6f8f-6699	<3.2.432-r0
L Improper Neutralization of Special Elements Used in a Template Engine	<3.2.432-r0
L Cross-site Scripting (XSS)	<3.0.34-r1
L GHSA-jwhx-xcg6-8xhj	<3.0.34-r1
L GHSA-2mqj-m65w-jghx	<3.0.34-r1
H CVE-2024-3651	<3.0.34-r1
L CVE-2024-35195	<3.0.34-r1
L GHSA-248v-346w-9cwc	<3.0.34-r1
L GHSA-jfmj-5v4g-7637	<3.0.34-r1
L CVE-2024-34062	<3.0.34-r1
L GHSA-cx63-2mw6-8hw5	<3.0.34-r1
M HTTP Request Smuggling	<3.0.34-r1
L GHSA-34jh-p97f-mpxf	<3.0.34-r1
L GHSA-h5c8-rqwp-cp95	<3.0.34-r1
L CVE-2024-27306	<3.0.34-r1
L CVE-2024-30251	<3.0.34-r1
L GHSA-7gpw-8wmc-pm8g	<3.0.34-r1
L CVE-2024-37891	<3.0.34-r1
L CVE-2024-42367	<3.0.34-r1
L GHSA-g7vv-2v7x-gj9p	<3.0.34-r1
H Untrusted Search Path	<3.0.34-r1
L GHSA-h75v-3vvj-5mfj	<3.0.34-r1
L GHSA-5m98-qgg9-wh84	<3.0.34-r1
L GHSA-5h86-8mv2-jq9f	<3.0.34-r1
H Insufficient Verification of Data Authenticity	<3.0.34-r1
L Resource Exhaustion	<3.0.34-r1
L GHSA-8qpw-xqxj-h4r2	<3.0.34-r1
H Directory Traversal	<3.0.34-r1
L GHSA-jjg7-2v4v-x38h	<3.0.34-r1
L Arbitrary Code Injection	<3.0.34-r1
L GHSA-9wx4-h78v-vm56	<3.0.34-r1
M Cross-site Scripting (XSS)	<3.0.34-r1

Vulnerability

Vulnerable Version

Missing Release of Resource after Effective Lifetime

<3.2.432-r0

GHSA-27mf-ghqm-j3j8

<3.2.432-r0

GHSA-5rjg-fvgr-3xxf

<3.2.432-r0

Improper Neutralization

<3.2.432-r0

Directory Traversal

<3.2.432-r0