Security Report
The Security Check found 6 vulnerabilities.
CVE | Severity | CVSS Score | Vulnerable Library | Suggested Fix | Issue |
---|---|---|---|---|---|
CVE-2024-34069Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ Werkzeug-2.2.3-py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Werkzeug-2.2.3-py3-none-any.whl | Upgrade to version: Werkzeug - 3.0.3 | #4515 |
CVE-2023-46136Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ Werkzeug-2.2.3-py3-none-any.whl (Vulnerable Library) |
High | 7.5 | Werkzeug-2.2.3-py3-none-any.whl | Upgrade to version: werkzeug - 2.3.8,3.0.1 | #3552 |
CVE-2024-6345Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ setuptools-68.0.0-py3-none-any.whl (Vulnerable Library) |
High | 7.0 | setuptools-68.0.0-py3-none-any.whl | Upgrade to version: setuptools - 70.0.0 | #4738 |
CVE-2024-35195Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ requests-2.31.0-py3-none-any.whl (Vulnerable Library) |
Medium | 5.6 | requests-2.31.0-py3-none-any.whl | Upgrade to version: requests - 2.32.2 | #4562 |
CVE-2024-37891Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ urllib3-2.0.7-py3-none-any.whl (Vulnerable Library) |
Medium | 4.4 | urllib3-2.0.7-py3-none-any.whl | Upgrade to version: urllib3 - 1.26.19,2.2.2 | #4641 |
CVE-2024-5569Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt Dependency Hierarchy: -> ❌ zipp-3.15.0-py3-none-any.whl (Vulnerable Library) |
Low | 3.3 | zipp-3.15.0-py3-none-any.whl | Upgrade to version: zipp - 3.19.1 | #4714 |
Total libraries scanned: 85
Scan token: 681d07d3dab54697afe1a0fc5e6729a3