Update dependency suds-py3 to v1.4.4.1 [SECURITY] (master) #129
Security Report
You have successfully remediated 8 vulnerabilities, but introduced 27 new vulnerabilities in this branch.
❌ New vulnerabilities:
CVE | Severity | CVSS Score | Vulnerable Library | Suggested Fix | Issue |
---|---|---|---|---|---|
CVE-2023-41419Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ gevent-1.4.0.tar.gz (Vulnerable Library) |
Critical | 9.8 | gevent-1.4.0.tar.gz | Upgrade to version: gevent - 23.9.0 | None |
CVE-2024-25128Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Critical | 9.1 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 4.3.11 | None |
CVE-2021-41265Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
High | 8.1 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 3.3.4 | #104 |
CVE-2023-46136Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask-1.1.4-py2.py3-none-any.whl -> ❌ Werkzeug-1.0.1-py2.py3-none-any.whl (Vulnerable Library) |
High | 8.0 | Werkzeug-1.0.1-py2.py3-none-any.whl | Upgrade to version: werkzeug - 2.3.8,3.0.1 | None |
CVE-2024-3651Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> requests-2.23.0-py2.py3-none-any.whl (Root Library) -> ❌ idna-2.10-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.5 | idna-2.10-py2.py3-none-any.whl | Upgrade to version: idna - 3.7 | None |
CVE-2024-34069Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask-1.1.4-py2.py3-none-any.whl -> ❌ Werkzeug-1.0.1-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Werkzeug-1.0.1-py2.py3-none-any.whl | Upgrade to version: Werkzeug - 3.0.3 | None |
CVE-2023-30861Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> ❌ Flask-1.1.4-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Flask-1.1.4-py2.py3-none-any.whl | Upgrade to version: flask - 2.2.5,2.3.2 | None |
CVE-2023-29005Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 4.3.0 | None |
CVE-2023-25577Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask-1.1.4-py2.py3-none-any.whl -> ❌ Werkzeug-1.0.1-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Werkzeug-1.0.1-py2.py3-none-any.whl | Upgrade to version: Werkzeug - 2.2.3 | None |
CVE-2021-33503Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> requests-2.23.0-py2.py3-none-any.whl (Root Library) -> ❌ urllib3-1.25.11-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.5 | urllib3-1.25.11-py2.py3-none-any.whl | Upgrade to version: urllib3 - 1.26.5 | #95 |
CVE-2024-1135Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ gunicorn-20.0.4-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.4 | gunicorn-20.0.4-py2.py3-none-any.whl | Upgrade to version: gunicorn - 22.0.0 | None |
CVE-2022-29217Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> ❌ PyJWT-1.7.1-py2.py3-none-any.whl (Vulnerable Library) |
High | 7.4 | PyJWT-1.7.1-py2.py3-none-any.whl | Upgrade to version: PyJWT - 2.4.0 | None |
CVE-2021-32805Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
High | 7.2 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 3.3.2 | #105 |
CVE-2022-24776Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Medium | 6.1 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 3.4.5 | None |
CVE-2023-43804Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> requests-2.23.0-py2.py3-none-any.whl (Root Library) -> ❌ urllib3-1.25.11-py2.py3-none-any.whl (Vulnerable Library) |
Medium | 5.9 | urllib3-1.25.11-py2.py3-none-any.whl | Upgrade to version: urllib3 - 1.26.17,2.0.6 | #121 |
CVE-2024-34064Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask_Babel-1.0.0-py3-none-any.whl -> ❌ Jinja2-2.11.3-py2.py3-none-any.whl (Vulnerable Library) |
Medium | 5.4 | Jinja2-2.11.3-py2.py3-none-any.whl | Upgrade to version: Jinja2 - 3.1.4 | None |
CVE-2024-22195Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask_Babel-1.0.0-py3-none-any.whl -> ❌ Jinja2-2.11.3-py2.py3-none-any.whl (Vulnerable Library) |
Medium | 5.4 | Jinja2-2.11.3-py2.py3-none-any.whl | Upgrade to version: jinja2 - 3.1.3 | None |
CVE-2024-49767Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask-1.1.4-py2.py3-none-any.whl -> ❌ Werkzeug-1.0.1-py2.py3-none-any.whl (Vulnerable Library) |
Medium | 5.3 | Werkzeug-1.0.1-py2.py3-none-any.whl | Upgrade to version: quart - 0.19.7;werkzeug - 3.0.6 | None |
CVE-2022-21659Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Medium | 5.3 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 3.4.4 | #103 |
CVE-2021-29621Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Medium | 5.3 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 3.3.0 | #106 |
CVE-2024-37891Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> requests-2.23.0-py2.py3-none-any.whl (Root Library) -> ❌ urllib3-1.25.11-py2.py3-none-any.whl (Vulnerable Library) |
Medium | 4.4 | urllib3-1.25.11-py2.py3-none-any.whl | Upgrade to version: urllib3 - 1.26.19,2.2.2 | None |
CVE-2023-45803Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> requests-2.23.0-py2.py3-none-any.whl (Root Library) -> ❌ urllib3-1.25.11-py2.py3-none-any.whl (Vulnerable Library) |
Medium | 4.2 | urllib3-1.25.11-py2.py3-none-any.whl | Upgrade to version: urllib3 - 1.26.18,2.0.7 | #124 |
CVE-2024-49766Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask-1.1.4-py2.py3-none-any.whl -> ❌ Werkzeug-1.0.1-py2.py3-none-any.whl (Vulnerable Library) |
Low | 3.7 | Werkzeug-1.0.1-py2.py3-none-any.whl | Upgrade to version: Werkzeug - 3.0.6 | None |
CVE-2024-45314Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Low | 3.6 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 4.5.1 | None |
CVE-2023-34110Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Low | 2.7 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 4.3.2 | None |
CVE-2022-31177Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ Flask_AppBuilder-2.3.0-py3-none-any.whl (Vulnerable Library) |
Low | 2.7 | Flask_AppBuilder-2.3.0-py3-none-any.whl | Upgrade to version: Flask-AppBuilder - 4.1.3 | None |
CVE-2023-23934Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> Flask_AppBuilder-2.3.0-py3-none-any.whl (Root Library) -> Flask-1.1.4-py2.py3-none-any.whl -> ❌ Werkzeug-1.0.1-py2.py3-none-any.whl (Vulnerable Library) |
Low | 2.6 | Werkzeug-1.0.1-py2.py3-none-any.whl | Upgrade to version: Werkzeug - 2.2.3 | None |
✔️ Remediated vulnerabilities:
CVE | Vulnerable Library |
---|---|
CVE-2024-3651 | idna-2.9-py2.py3-none-any.whl |
CVE-2021-33503 | urllib3-1.25.8-py2.py3-none-any.whl |
CVE-2024-37891 | urllib3-1.25.8-py2.py3-none-any.whl |
CVE-2023-45803 | urllib3-1.25.8-py2.py3-none-any.whl |
CVE-2023-43804 | urllib3-1.25.8-py2.py3-none-any.whl |
CVE-2023-37920 | certifi-2019.11.28-py2.py3-none-any.whl |
CVE-2022-23491 | certifi-2019.11.28-py2.py3-none-any.whl |
CVE-2020-26137 | urllib3-1.25.8-py2.py3-none-any.whl |
Base branch total remaining vulnerabilities: 19
Base branch commit: null
Total libraries scanned: 68
Scan token: 71e0792f8c544852bb134d9d9f011ed8