[Backport 2.8] Upgrade AWS version for SDKs to 1.12.687 #895
Security Report
❌ New vulnerabilities:
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2023-6481Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.2.9/cdaca0cf922c5791a8efa0063ec714ca974affe3/logback-core-1.2.9.jar Dependency Hierarchy: -> ktlint-0.44.0.jar (Root Library) -> ktlint-core-0.44.0.jar -> logback-classic-1.2.9.jar -> ❌ logback-core-1.2.9.jar (Vulnerable Library) |
 High |
7.5 | logback-core-1.2.9.jar | Upgrade to version: ch.qos.logback:logback-core:1.2.13,1.3.14,1.4.14 | #826 |
CVE-2023-6378Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-classic/1.2.9/7d495522b08a9a66084bf417e70eedf95ef706bc/logback-classic-1.2.9.jar Dependency Hierarchy: -> ktlint-0.44.0.jar (Root Library) -> ktlint-core-0.44.0.jar -> ❌ logback-classic-1.2.9.jar (Vulnerable Library) |
High |
7.5 | logback-classic-1.2.9.jar | Upgrade to version: ch.qos.logback:logback-classic:1.3.12,1.4.12 | #826 |
CVE-2023-5072Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.json/json/20230227/7a0d4aca76513d8ce81f9b044ce8126b84809ad8/json-20230227.jar Dependency Hierarchy: -> ❌ json-20230227.jar (Vulnerable Library) |
High |
7.5 | json-20230227.jar | Upgrade to version: org.json:json:20231013 | #794 |
Base branch total remaining vulnerabilities: 0
Base branch commit: 6f33b566b8d316e343ff95bd3b763d351c7d7c0f
Total libraries scanned: 209
Scan token: 0534987c35b14a7a8e004c564ae59479