weld-core vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the weld-core package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Information Exposure Through Log Files	<0:1.1.34-2.Final_redhat_2.1.ep6.el7
H Incorrect Permission Assignment for Critical Resource	<0:1.1.34-1.Final_redhat_1.1.ep6.el7
M Improper Cleanup on Thrown Exception	<0:1.1.28-1.Final_redhat_1.1.ep6.el7
M Improper Access Control	<0:1.1.28-1.Final_redhat_1.1.ep6.el7
M Incorrect Authorization	<0:1.1.28-1.Final_redhat_1.1.ep6.el7
M Incorrect Authorization	<0:1.1.28-1.Final_redhat_1.1.ep6.el7
M Improperly Implemented Security Check for Standard	<0:1.1.33-1.Final_redhat_1.1.ep6.el7
H Allocation of Resources Without Limits or Throttling	<0:1.1.31-1.Final_redhat_1.1.ep6.el7
H Cross-site Request Forgery (CSRF)	<0:1.1.31-1.Final_redhat_1.1.ep6.el7
H Improper Input Validation	<0:1.1.31-1.Final_redhat_1.1.ep6.el7
L Information Exposure	<0:1.1.29-1.Final_redhat_1.1.ep6.el7
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0:1.1.34-1.Final_redhat_1.1.ep6.el7
M Allocation of Resources Without Limits or Throttling	<0:1.1.33-1.Final_redhat_1.1.ep6.el7
M Improper Input Validation	<0:1.1.25-1.Final_redhat_2.1.ep6.el7
H CVE-2016-6346	<0:1.1.34-1.Final_redhat_1.1.ep6.el7
H Improper Authorization	<0:1.1.34-2.Final_redhat_2.1.ep6.el7
M XML External Entity (XXE) Injection	<0:1.1.28-1.Final_redhat_1.1.ep6.el7