Security Report
The Security Check found 3 vulnerabilities.
CVE | Severity | CVSS Score | Vulnerable Library | Suggested Fix | Issue |
---|---|---|---|---|---|
CVE-2023-46136Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ Werkzeug-2.2.3-py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Werkzeug-2.2.3-py3-none-any.whl | Upgrade to version: werkzeug - 2.3.8,3.0.1 | #3552 |
CVE-2024-21485Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ dash_html_components-2.0.0-py3-none-any.whl (Vulnerable Library) |
Medium | 5.4 | dash_html_components-2.0.0-py3-none-any.whl | Upgrade to version: dash - 2.15.0, dash-core-components - 2.13.0, dash-html-components - 2.0.16 | #4083 |
CVE-2024-21485Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ dash_core_components-2.0.0-py3-none-any.whl (Vulnerable Library) |
Medium | 5.4 | dash_core_components-2.0.0-py3-none-any.whl | Upgrade to version: dash - 2.15.0, dash-core-components - 2.13.0, dash-html-components - 2.0.16 | #4083 |
Total libraries scanned: 112
Scan token: b4184513905d4779a256cbfdb7b537f1