VYPR

apk package

wolfi/gradle-8

pkg:apk/wolfi/gradle-8

Vulnerabilities (25)

  • CVE-2023-2976MedJun 14, 2023
    affected < 8.2.1-r1fixed 8.2.1-r1

    Use of Java's default temporary directory for file creation in `FileBackedOutputStream` in Google Guava versions 1.0 to 31.1 on Unix systems and Android Ice Cream Sandwich allows other users and apps on the machine with access to the default Java temporary directory to be able to

  • CVE-2023-35116MedJun 14, 2023
    affected < 0fixed 0

    jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cycli

  • CVE-2022-45868HigNov 23, 2022
    affected < 0fixed 0

    The web-based admin console in H2 Database Engine before 2.2.220 can be started via the CLI with the argument -webAdminPassword, which allows the user to specify the password in cleartext for the web admin console. Consequently, a local user (or an attacker that has obtained loca

  • CVE-2022-37866HigNov 7, 2022
    affected < 0fixed 0

    When Apache Ivy downloads artifacts from a repository it stores them in the local file system based on a user-supplied "pattern" that may include placeholders for artifacts coordinates like the organisation, module or version. If said coordinates contain "../" sequences - which a

  • CVE-2020-8908LowDec 10, 2020
    affected < 8.2.1-r1fixed 8.2.1-r1

    A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the

Page 2 of 2