org.apache.ws.security:wss4j@1.5.11 vulnerabilities
-
latest version
1.6.19
-
latest non vulnerable version
-
first published
17 years ago
-
latest version published
9 years ago
-
licenses detected
- [0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.ws.security:wss4j package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.ws.security:wss4j is a project that provides a Java implementation of the primary security standards for Web Services, namely the OASIS Web Services Security (WS-Security) specifications from the OASIS Web Services Security TC. Affected versions of this package are vulnerable to Improper Authentication. When using How to fix Improper Authentication? Upgrade |
[,1.6.16)
[2.0.0,2.0.2)
|
org.apache.ws.security:wss4j is a project that provides a Java implementation of the primary security standards for Web Services, namely the OASIS Web Services Security (WS-Security) specifications from the OASIS Web Services Security TC. Affected versions of this package are vulnerable to Use of a Risky Cryptographic Algorithm. The How to fix Use of a Risky Cryptographic Algorithm? Upgrade |
[,1.6.4)
|
|
[,1.6.17)
|