sz-adm-report-file-app.tar (alt cpe:/o:alt:spcontainer:10.2.2) - Trivy Report - 2026-05-13 15:23:44.763512107 +0000 UTC m=+2.867321248

alt
No Vulnerabilities found
No Misconfigurations found
jar
Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
io.netty:netty-codec	CVE-2026-42583	HIGH	4.1.128.Final	4.1.133.Final	https://github.com/netty/netty https://github.com/netty/netty/security/advisories/GHSA-mj4r-2hfc-f8p6
io.netty:netty-codec-http	CVE-2026-33870	HIGH	4.1.128.Final	4.1.132.Final, 4.2.10.Final	https://access.redhat.com/security/cve/CVE-2026-33870 https://github.com/netty/netty https://github.com/netty/netty/security/advisories/GHSA-pwqr-wmgm-9rr8 https://nvd.nist.gov/vuln/detail/CVE-2026-33870 https://w4ke.info/2025/06/18/funky-chunks.html https://w4ke.info/2025/10/29/funky-chunks-2.html https://www.cve.org/CVERecord?id=CVE-2026-33870 https://www.rfc-editor.org/rfc/rfc9110
io.netty:netty-codec-http	CVE-2026-42584	HIGH	4.1.128.Final	4.2.13.Final, 4.1.133.Final	https://github.com/netty/netty https://github.com/netty/netty/security/advisories/GHSA-57rv-r2g8-2cj3
io.netty:netty-codec-http	CVE-2026-42587	HIGH	4.1.128.Final	4.2.13.Final, 4.1.133.Final	https://github.com/netty/netty https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
io.netty:netty-codec-http2	CVE-2026-33871	HIGH	4.1.128.Final	4.1.132.Final, 4.2.11.Final	https://access.redhat.com/security/cve/CVE-2026-33871 https://github.com/netty/netty https://github.com/netty/netty/security/advisories/GHSA-w9fj-cfpg-grvv https://nvd.nist.gov/vuln/detail/CVE-2026-33871 https://www.cve.org/CVERecord?id=CVE-2026-33871
io.netty:netty-codec-http2	CVE-2026-42587	HIGH	4.1.128.Final	4.2.13.Final, 4.1.133.Final	https://github.com/netty/netty https://github.com/netty/netty/security/advisories/GHSA-f6hv-jmp6-3vwv
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-29145	CRITICAL	10.1.48	9.0.116, 10.1.53, 11.0.20	http://www.openwall.com/lists/oss-security/2026/04/09/23 https://access.redhat.com/security/cve/CVE-2026-29145 https://github.com/apache/tomcat https://lists.apache.org/thread/yz5fxmhd2j43wgqykssdo7kltws57jfz https://nvd.nist.gov/vuln/detail/CVE-2026-29145 https://www.cve.org/CVERecord?id=CVE-2026-29145
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-24734	HIGH	10.1.48	11.0.18, 10.1.52, 9.0.115	https://access.redhat.com/security/cve/CVE-2026-24734 https://github.com/apache/tomcat https://lists.apache.org/thread/292dlmx3fz1888v6v16221kpozq56gml https://nvd.nist.gov/vuln/detail/CVE-2026-24734 https://www.cve.org/CVERecord?id=CVE-2026-24734
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-34483	HIGH	10.1.48	9.0.116, 10.1.54, 11.0.21	http://www.openwall.com/lists/oss-security/2026/04/09/26 https://access.redhat.com/security/cve/CVE-2026-34483 https://github.com/apache/tomcat https://lists.apache.org/thread/j1w7304yonlr8vo1tkb5nfs7od1y228b https://nvd.nist.gov/vuln/detail/CVE-2026-34483 https://www.cve.org/CVERecord?id=CVE-2026-34483
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-34487	HIGH	10.1.48	9.0.117, 10.1.54, 11.0.21	http://www.openwall.com/lists/oss-security/2026/04/09/28 https://access.redhat.com/security/cve/CVE-2026-34487 https://github.com/apache/tomcat https://lists.apache.org/thread/4xpkwolpkrj8v5xzp5nyovtlqp3y850h https://nvd.nist.gov/vuln/detail/CVE-2026-34487 https://www.cve.org/CVERecord?id=CVE-2026-34487
org.postgresql:postgresql	CVE-2026-42198	HIGH	42.7.8	42.7.11	https://access.redhat.com/security/cve/CVE-2026-42198 https://github.com/pgjdbc/pgjdbc https://github.com/pgjdbc/pgjdbc/releases/tag/REL42.7.11 https://github.com/pgjdbc/pgjdbc/security/advisories/GHSA-98qh-xjc8-98pq https://nvd.nist.gov/vuln/detail/CVE-2026-42198 https://www.cve.org/CVERecord?id=CVE-2026-42198
org.springframework.boot:spring-boot	CVE-2026-40973	HIGH	3.4.11	4.0.6, 3.5.14	https://access.redhat.com/security/cve/CVE-2026-40973 https://github.com/spring-projects/spring-boot https://nvd.nist.gov/vuln/detail/CVE-2026-40973 https://spring.io/security/cve-2026-40973 https://www.cve.org/CVERecord?id=CVE-2026-40973
No Misconfigurations found