CVE Security Report - SICS Search Server
This report is generated on: 26.03.2020, 12:33:36 UTC using dependency-check version: 5.0.0.
The report contains data retrieved from the National Vulnerability Database: https://nvd.nist.gov, NPM Public Advisories: https://www.npmjs.com/advisories, and the RetireJS community.
| Name | Description | CWE | CVSS v2.0 Severity | CVSS v3.0 Severity | Dependency |
|---|---|---|---|---|---|
| CVE-2019-12422 | Apache Shiro before 1.4.2, when using the default “remember me” configuration, cookies could be susceptible to a padding attack. | CWE-20 | MEDIUM | shiro-core-1.4.0.jar |