com.sap.scimono:scimono-server@0.0.12 vulnerabilities
-
latest version
0.1.3
-
latest non vulnerable version
-
first published
5 years ago
-
latest version published
2 months ago
-
licenses detected
- [0.0.1,34.0.0)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the com.sap.scimono:scimono-server package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
com.sap.scimono:scimono-server is an Open source SCIM 2.0 client and server library. Affected versions of this package are vulnerable to Information Exposure. Due to improper input sanitization, specially crafted LDAP queries can be injected by an unauthenticated user. This could partially impact the confidentiality of the application. How to fix Information Exposure? Upgrade |
[,0.0.23)
|
com.sap.scimono:scimono-server is an Open source SCIM 2.0 client and server library. Affected versions of this package are vulnerable to Remote Code Execution (RCE). An attacker could inject and execute java expression and compromising the availability and integrity of the system. How to fix Remote Code Execution (RCE)? Upgrade |
[,0.0.19)
|