pom.xml - Trivy Report - 2025-08-01 15:44:18.096911681 +0000 UTC m=+37.119928898
pom
Package
Vulnerability ID
Severity
Installed Version
Fixed Version
Links
org.apache.tomcat.embed:tomcat-embed-core
CVE-2025-48988
HIGH
10.1.40
11.0.8, 10.1.42, 9.0.106
http://www.openwall.com/lists/oss-security/2025/06/16/1
https://access.redhat.com/security/cve/CVE-2025-48988
https://github.com/apache/tomcat
https://github.com/apache/tomcat/commit/2b0ab14fb55d4edc896e5f1817f2ab76f714ae5e
https://github.com/apache/tomcat/commit/cdde8e655bc1c5c60a07efd216251d77c52fd7f6
https://github.com/apache/tomcat/commit/ee8042ffce4cb9324dfd79efda5984f37bbb6910
https://lists.apache.org/thread/nzkqsok8t42qofgqfmck536mtyzygp18
https://nvd.nist.gov/vuln/detail/CVE-2025-48988
https://tomcat.apache.org/security-10.html
https://tomcat.apache.org/security-11.html
https://tomcat.apache.org/security-9.html
https://www.cve.org/CVERecord?id=CVE-2025-48988
org.postgresql:postgresql
CVE-2025-49146
HIGH
42.7.5
42.7.7
https://access.redhat.com/security/cve/CVE-2025-49146
https://datatracker.ietf.org/doc/html/rfc5802
https://datatracker.ietf.org/doc/html/rfc7677
https://github.com/pgjdbc/pgjdbc
https://github.com/pgjdbc/pgjdbc/commit/9217ed16cb2918ab1b6b9258ae97e6ede244d8a0
https://github.com/pgjdbc/pgjdbc/security/advisories/GHSA-hq9p-pm7w-8p54
https://nvd.nist.gov/vuln/detail/CVE-2025-49146
https://www.cve.org/CVERecord?id=CVE-2025-49146
https://www.postgresql.org/docs/current/sasl-authentication.html#SASL-SCRAM-SHA-256
No Misconfigurations found