Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-framework-cluster CWE-502 CWE-502 Medium CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-framework-cluster-protocol CWE-502 CWE-502 Medium CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-framework-core CWE-502 CWE-502 Medium CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-security-utils CWE-502 CWE-502 Medium CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-update-attribute-model CWE-502 CWE-502 Medium CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-web-api CWE-502 CWE-502 Medium CVE-2017-15703 Vulnerability in maven package org.apache.nifi:nifi-web-security CWE-502 CWE-502 Medium CVE-2017-15706 Vulnerability in maven package org.apache.tomcat:tomcat CWE-358 CWE-358 Medium CVE-2017-15881 Vulnerability in npm package keystone CWE-79 CWE-79 Medium CVE-2017-16007 Vulnerability in npm package node-jose Medium CVE-2017-16025 Vulnerability in npm package nes CWE-287 CWE-287 Medium CVE-2017-16026 Vulnerability in maven package org.webjars.npm:request CWE-20 CWE-20 Medium CVE-2017-16026 Vulnerability in maven package org.webjars:request CWE-20 CWE-20 Medium CVE-2017-16026 Vulnerability in npm package request CWE-20 CWE-20 Medium CVE-2017-16028 Vulnerability in npm package react-native-meteor-oauth CWE-338 CWE-338 Medium CVE-2017-16041 Vulnerability in npm package ikst CWE-319 CWE-319 Medium CVE-2017-16109 Vulnerability in npm package easyquick CWE-22 CWE-22 Medium CVE-2017-16126 Vulnerability in npm package botbait CWE-200 CWE-200 Medium CVE-2017-16129 Vulnerability in maven package org.webjars.bower:superagent CWE-400 CWE-400 Medium CVE-2017-16129 Vulnerability in maven package org.webjars.npm:superagent CWE-400 CWE-400 Medium CVE-2017-16129 Vulnerability in maven package org.webjars:superagent CWE-400 CWE-400 Medium CVE-2017-16129 Vulnerability in npm package superagent CWE-400 CWE-400 Medium CVE-2017-16137 Vulnerability in maven package org.webjars.npm:debug CWE-400 CWE-400 Medium CVE-2017-16137 Vulnerability in npm package debug CWE-400 CWE-400 Medium CVE-2017-16179 Vulnerability in npm package dasafio CWE-22 CWE-22 Medium CVE-2017-16222 Vulnerability in npm package elding CWE-22 CWE-22 Medium CVE-2017-16821 Vulnerability in maven package org.b3log:symphony CWE-79 CWE-79 Medium CVE-2017-20162 Vulnerability in maven package org.webjars.npm:ms CWE-1333 CWE-1333 Medium CVE-2017-20162 Vulnerability in npm package ms CWE-1333 CWE-1333 Medium CVE-2017-1000089 Vulnerability in maven package org.jenkins-ci.plugins:pipeline-build-step CWE-276 CWE-276 Medium CVE-2017-1000110 Vulnerability in maven package io.jenkins.blueocean:blueocean-parent CWE-287 CWE-287 Medium CVE-2017-1000113 Vulnerability in maven package org.jenkins-ci.plugins:deploy CWE-200 CWE-200 Medium CVE-2017-1000209 Vulnerability in maven package com.neovisionaries:nv-websocket-client CWE-295 CWE-295 Medium CVE-2017-1000243 Vulnerability in maven package org.jvnet.hudson.plugins:favorite CWE-862 CWE-862 Medium CVE-2017-1000386 Vulnerability in maven package org.biouno:uno-choice CWE-79 CWE-79 Medium CVE-2017-1000388 Vulnerability in maven package org.jenkins-ci.plugins:depgraph-view CWE-862 CWE-862 Medium CVE-2017-1000390 Vulnerability in maven package org.jenkins-ci.plugins:jenkins-multijob-plugin CWE-862 CWE-862 Medium CVE-2017-1000392 Vulnerability in maven package org.jenkins-ci.main:jenkins-war CWE-79 CWE-79 Medium CVE-2017-1000395 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-200 CWE-200 Medium CVE-2017-1000396 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-295 CWE-295 Medium CVE-2017-1000397 Vulnerability in maven package org.jenkins-ci.main:maven-plugin CWE-20 CWE-20 Medium CVE-2017-1000398 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-200 CWE-200 Medium CVE-2017-1000399 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-200 CWE-200 Medium CVE-2017-1000400 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-862 CWE-862 Medium CVE-2017-1000402 Vulnerability in maven package org.jenkins-ci.plugins:swarm-plugin CWE-20 CWE-20 Medium CVE-2017-1000424 Vulnerability in maven package org.webjars.npm:electron Medium CVE-2017-1000424 Vulnerability in npm package electron Medium CVE-2018-1047 Vulnerability in maven package org.wildfly:wildfly-undertow CWE-20 CWE-20 Medium CVE-2018-1062 Vulnerability in maven package org.ovirt.engine.core:vdsbroker CWE-212 CWE-212 Medium CVE-2018-1109 Vulnerability in npm package braces CWE-400 CWE-400 Medium CVE-2018-1196 Vulnerability in maven package org.springframework.boot:spring-boot-loader-tools CWE-59 CWE-59 Medium CVE-2018-1199 Vulnerability in maven package org.springframework.security:spring-security-config CWE-20 CWE-20 Medium CVE-2018-1199 Vulnerability in maven package org.springframework.security:spring-security-web CWE-20 CWE-20 Medium CVE-2018-1261 Vulnerability in maven package org.springframework.integration:spring-integration-zip CWE-22 CWE-22 Medium CVE-2018-1263 Vulnerability in maven package org.springframework.integration:spring-integration-zip CWE-22 CWE-22 Medium CVE-2018-1271 Vulnerability in maven package org.springframework:spring-webmvc CWE-22 CWE-22 Medium CVE-2018-1288 Vulnerability in maven package org.apache.kafka:kafka Medium CVE-2018-1288 Vulnerability in maven package org.apache.kafka:kafka_2.10 Medium CVE-2018-1288 Vulnerability in maven package org.apache.kafka:kafka_2.11 Medium CVE-2018-1288 Vulnerability in maven package org.apache.kafka:kafka_2.12 Medium CVE-2018-1298 Vulnerability in maven package org.apache.qpid:apache-qpid-broker-j CWE-20 CWE-20 Medium CVE-2018-1304 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core Medium CVE-2018-1304 Vulnerability in maven package org.apache.tomcat:tomcat-catalina Medium CVE-2018-1313 Vulnerability in maven package org.apache.derby:derby Medium CVE-2018-1314 Vulnerability in maven package org.apache.hive:hive-exec CWE-862 CWE-862 Medium CVE-2018-1322 Vulnerability in maven package org.apache.syncope:syncope-core CWE-200 CWE-200 Medium CVE-2018-1324 Vulnerability in maven package org.apache.commons:commons-compress CWE-835 CWE-835 Medium CVE-2018-1334 Vulnerability in maven package org.apache.spark:spark-core CWE-200 CWE-200 Medium CVE-2018-1334 Vulnerability in maven package org.apache.spark:spark-core_2.10 CWE-200 CWE-200 Medium CVE-2018-1334 Vulnerability in maven package org.apache.spark:spark-core_2.11 CWE-200 CWE-200 Medium CVE-2018-1338 Vulnerability in maven package org.apache.tika:tika-parsers CWE-835 CWE-835 Medium CVE-2018-1339 Vulnerability in maven package org.apache.tika:tika-parsers CWE-835 CWE-835 Medium CVE-2018-3716 Vulnerability in npm package simplehttpserver CWE-79 CWE-79 Medium CVE-2018-3717 Vulnerability in npm package anywhere CWE-79 CWE-79 Medium CVE-2018-3717 Vulnerability in npm package simple-server CWE-79 CWE-79 Medium 12345...22 3 / 22
