update groovy-all ver #3940

Security Report

You have successfully remediated 6 vulnerabilities, but introduced 4 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE	Severity	CVSS Score	Vulnerable Library	Suggested Fix	Issue
CVE-2023-40336 Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jenkins-ci.plugins/cloudbees-folder/6.758.vfd75d09eea_a_1/c2543c5ea312baacce5965b7e70103ad37837ca/cloudbees-folder-6.758.vfd75d09eea_a_1.jar Dependency Hierarchy: -> ❌ cloudbees-folder-6.758.vfd75d09eea_a_1.jar (Vulnerable Library)	High	8.8	cloudbees-folder-6.758.vfd75d09eea_a_1.jar	Upgrade to version: org.jenkins-ci.plugins:cloudbees-folder:6.848.ve3b_fd7839a_81	#3900
CVE-2023-40338 Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jenkins-ci.plugins/cloudbees-folder/6.758.vfd75d09eea_a_1/c2543c5ea312baacce5965b7e70103ad37837ca/cloudbees-folder-6.758.vfd75d09eea_a_1.jar Dependency Hierarchy: -> ❌ cloudbees-folder-6.758.vfd75d09eea_a_1.jar (Vulnerable Library)	High	7.5	cloudbees-folder-6.758.vfd75d09eea_a_1.jar	Upgrade to version: org.jenkins-ci.plugins:cloudbees-folder:6.848.ve3b_fd7839a_81	#3901
CVE-2022-46751 Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.ivy/ivy/2.5.1/7fac35f24f89776e7b78ec98658d8bc8f22f7e89/ivy-2.5.1.jar Dependency Hierarchy: -> ❌ ivy-2.5.1.jar (Vulnerable Library)	High	7.3	ivy-2.5.1.jar	Upgrade to version: org.apache.ivy:ivy:2.5.2	#3908
CVE-2023-40337 Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jenkins-ci.plugins/cloudbees-folder/6.758.vfd75d09eea_a_1/c2543c5ea312baacce5965b7e70103ad37837ca/cloudbees-folder-6.758.vfd75d09eea_a_1.jar Dependency Hierarchy: -> ❌ cloudbees-folder-6.758.vfd75d09eea_a_1.jar (Vulnerable Library)	Medium	4.3	cloudbees-folder-6.758.vfd75d09eea_a_1.jar	Upgrade to version: org.jenkins-ci.plugins:cloudbees-folder:6.848.ve3b_fd7839a_81	#3902

✔️ Remediated vulnerabilities:

CVE	Vulnerable Library
CVE-2023-40338	cloudbees-folder-6.740.ve4f4ffa_dea_54.jar
CVE-2022-46751	ivy-2.5.0.jar
CVE-2022-37865	ivy-2.5.0.jar
CVE-2023-40336	cloudbees-folder-6.740.ve4f4ffa_dea_54.jar
CVE-2022-37866	ivy-2.5.0.jar
CVE-2023-40337	cloudbees-folder-6.740.ve4f4ffa_dea_54.jar

Base branch total remaining vulnerabilities: 28
Base branch commit: ec3c82d02c800bf2c17c85a27d9c560d0bd96296

Total libraries scanned: 296

Scan token: 52d515f005d644bb912683c79fb87d9c

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

update groovy-all ver #3940

update groovy-all ver #3940

Security Report

Re-running checks...

update groovy-all ver #3940

update pipeline-groovy-lib

update groovy-all ver #3940

Security Report

Re-running checks...