pom.xml - Trivy Report - 2026-04-28 14:42:05.041222161 +0000 UTC m=+64.466280887

pom
Package	Vulnerability ID	Severity	Installed Version	Fixed Version	Links
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-29145	CRITICAL	11.0.12	9.0.116, 10.1.53, 11.0.20	http://www.openwall.com/lists/oss-security/2026/04/09/23 https://access.redhat.com/security/cve/CVE-2026-29145 https://github.com/apache/tomcat https://lists.apache.org/thread/yz5fxmhd2j43wgqykssdo7kltws57jfz https://nvd.nist.gov/vuln/detail/CVE-2026-29145 https://www.cve.org/CVERecord?id=CVE-2026-29145
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-24734	HIGH	11.0.12	11.0.18, 10.1.52, 9.0.115	https://access.redhat.com/security/cve/CVE-2026-24734 https://github.com/apache/tomcat https://lists.apache.org/thread/292dlmx3fz1888v6v16221kpozq56gml https://nvd.nist.gov/vuln/detail/CVE-2026-24734 https://www.cve.org/CVERecord?id=CVE-2026-24734
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-34483	HIGH	11.0.12	9.0.116, 10.1.54, 11.0.21	http://www.openwall.com/lists/oss-security/2026/04/09/26 https://access.redhat.com/security/cve/CVE-2026-34483 https://github.com/apache/tomcat https://lists.apache.org/thread/j1w7304yonlr8vo1tkb5nfs7od1y228b https://nvd.nist.gov/vuln/detail/CVE-2026-34483 https://www.cve.org/CVERecord?id=CVE-2026-34483
org.apache.tomcat.embed:tomcat-embed-core	CVE-2026-34487	HIGH	11.0.12	9.0.117, 10.1.54, 11.0.21	http://www.openwall.com/lists/oss-security/2026/04/09/28 https://access.redhat.com/security/cve/CVE-2026-34487 https://github.com/apache/tomcat https://lists.apache.org/thread/4xpkwolpkrj8v5xzp5nyovtlqp3y850h https://nvd.nist.gov/vuln/detail/CVE-2026-34487 https://www.cve.org/CVERecord?id=CVE-2026-34487
org.springframework.boot:spring-boot-starter-actuator	CVE-2026-22731	HIGH	3.4.7	3.5.12, 4.0.4	https://access.redhat.com/security/cve/CVE-2026-22731 https://github.com/spring-projects/spring-boot https://nvd.nist.gov/vuln/detail/CVE-2026-22731 https://spring.io/security/cve-2026-22731 https://www.cve.org/CVERecord?id=CVE-2026-22731
org.springframework.boot:spring-boot-starter-actuator	CVE-2026-22733	HIGH	3.4.7	4.0.4, 3.5.12	https://github.com/spring-projects/spring-boot https://nvd.nist.gov/vuln/detail/CVE-2026-22733 https://spring.io/security/cve-2026-22733
No Misconfigurations found
dockerfile
No Vulnerabilities found
No Misconfigurations found