Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump cryptography from 41.0.6 to 42.0.2 #484

Closed
wants to merge 1 commit into from

Bump cryptography from 41.0.6 to 42.0.2

bed1525
Select commit
Loading
Failed to load commit list.
Closed

Bump cryptography from 41.0.6 to 42.0.2 #484

Bump cryptography from 41.0.6 to 42.0.2
bed1525
Select commit
Loading
Failed to load commit list.
Wiz Inc. (572fc38784) / Wiz Vulnerability Scanner completed Feb 17, 2024 in 3s

Wiz Vulnerability Scanner

Well Met, Lord of Logging Legends! 📜

The compass needle of Wiz's discovery pointed to paths lined with newfound discoveries. 🧭🌟

Exposing Vulnerabilities with Wiz 🪄

🔮 Vulnerabilities Detected: 2

― Note from Wiz: "With code like this, you could give Merlin a run for his scrolls! 📜🔥"

Annotations

Check failure on line 1 in poetry.lock

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz Vulnerability Scanner

fastapi:0.108.0 

Detected Vulnerabilities:
  CVE-2024-24762, Severity: High, Source: https://github.com/advisories/GHSA-qf9m-vfgh-m389
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 0.109.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in poetry.lock

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz Vulnerability Scanner

pygments:2.15.0 

Detected Vulnerabilities:
  CVE-2022-40896, Severity: Medium, Source: https://github.com/pypa/advisory-database/blob/main/vulns/pygments/PYSEC-2023-117.yaml
    CVSS score: 5.5, CVSS exploitability score: 1.8
    🩹 Fixed version: 2.15.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check failure on line 1 in poetry.lock

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz Vulnerability Scanner

fastapi:0.108.0 

Detected Vulnerabilities:
  CVE-2024-24762, Severity: High, Source: https://github.com/advisories/GHSA-qf9m-vfgh-m389
    CVSS score: 7.5, CVSS exploitability score: 3.9
    🩹 Fixed version: 0.109.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit

Check warning on line 1 in poetry.lock

See this annotation in the file changed.

@wiz-inc-572fc38784 wiz-inc-572fc38784 / Wiz Vulnerability Scanner

pygments:2.15.0 

Detected Vulnerabilities:
  CVE-2022-40896, Severity: Medium, Source: https://github.com/pypa/advisory-database/blob/main/vulns/pygments/PYSEC-2023-117.yaml
    CVSS score: 5.5, CVSS exploitability score: 1.8
    🩹 Fixed version: 2.15.1
    💥 Has public exploit
    🧨 Has CISA KEV exploit
View more details on Wiz Inc. (572fc38784)