Details
-
Bug
-
Status: Closed
-
Critical
-
Resolution: Done
-
None
-
XRAY 2021 Sprint 6
-
Description
The Apache Tika Maven dependency should be updated to the latest version as it contains some fixes for the vulnerabilities found in older versions.
| Severity | Title | Description |
|---|---|---|
| High | Arbitrary Command Injection | https://app.snyk.io/org/rodrigues.rmb/project/3ca9a87e-ca0d-47e2-92cd-5ed5c081764f/#issue-SNYK-JAVA-ORGAPACHETIKA-480543 |
| High | XML External Entity (XXE) Injection | https://app.snyk.io/org/rodrigues.rmb/project/3ca9a87e-ca0d-47e2-92cd-5ed5c081764f/#issue-SNYK-JAVA-ORGAPACHETIKA-466520 |
| Medium | XML External Entity (XXE) Injection | https://app.snyk.io/org/rodrigues.rmb/project/3ca9a87e-ca0d-47e2-92cd-5ed5c081764f/#issue-SNYK-JAVA-ORGAPACHETIKA-72437 |
| Medium | Denial of Service (DoS) | https://app.snyk.io/org/rodrigues.rmb/project/3ca9a87e-ca0d-47e2-92cd-5ed5c081764f/#issue-SNYK-JAVA-ORGAPACHETIKA-72870 |
| Medium | Denial of Service (DoS) | https://app.snyk.io/org/rodrigues.rmb/project/3ca9a87e-ca0d-47e2-92cd-5ed5c081764f/#issue-SNYK-JAVA-ORGAPACHETIKA-456559 |
| Medium | Stack Overflow | https://app.snyk.io/org/rodrigues.rmb/project/3ca9a87e-ca0d-47e2-92cd-5ed5c081764f/#issue-SNYK-JAVA-ORGAPACHETIKA-456559 |
