0--commons-lang-2.6.jar00-govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jarFALLBACK-7016d19511GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch GHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package For additional help see: **Vulnerability GHSA-j288-q9x7-2f5v** | Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link | | --- | --- | --- | --- | --- | --- | --- | --- | | medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) | A medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jargrypeGrype Security Scanner-1395NORMALcommons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch GHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package For additional help see: **Vulnerability GHSA-j288-q9x7-2f5v** | Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link | | --- | --- | --- | --- | --- | --- | --- | --- | | medium | commons-lang | 2.6 | | java-archive | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar | github:language:java | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v) | A medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/commons-lang-2.6.jarGHSA-j288-q9x7-2f5v-commons-lang0--jasperreports-6.20.0.jar00-govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jarFALLBACK-c94c81d211GHSA-7c3f-cg9x-f3gr-jasperreports: JavaMatcherExactDirectMatch GHSA-7c3f-cg9x-f3gr high vulnerability for jasperreports package For additional help see: **Vulnerability GHSA-7c3f-cg9x-f3gr** | Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link | | --- | --- | --- | --- | --- | --- | --- | --- | | high | jasperreports | 6.20.0 | 7.0.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar | github:language:java | [GHSA-7c3f-cg9x-f3gr](https://github.com/advisories/GHSA-7c3f-cg9x-f3gr) | A high vulnerability in java-archive package: jasperreports, version 6.20.0 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jargrypeGrype Security Scanner-1395HIGHjasperreports-6.20.0.jar(1,0): GHSA-7c3f-cg9x-f3gr-jasperreports: : GHSA-7c3f-cg9x-f3gr-jasperreports: JavaMatcherExactDirectMatch GHSA-7c3f-cg9x-f3gr high vulnerability for jasperreports package For additional help see: **Vulnerability GHSA-7c3f-cg9x-f3gr** | Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link | | --- | --- | --- | --- | --- | --- | --- | --- | | high | jasperreports | 6.20.0 | 7.0.4 | java-archive | /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jar | github:language:java | [GHSA-7c3f-cg9x-f3gr](https://github.com/advisories/GHSA-7c3f-cg9x-f3gr) | A high vulnerability in java-archive package: jasperreports, version 6.20.0 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/jasperreports-6.20.0.jarGHSA-7c3f-cg9x-f3gr-jasperreports0--spring-security-web-5.8.16.jar00-govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/spring-security-web-5.8.16.jarFALLBACK-c16a973211GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch GHSA-mf92-479x-3373 critical vulnerability for spring-security-web package For additional help see: **Vulnerability GHSA-mf92-479x-3373** | Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link | | --- | --- | --- | --- | --- | --- | --- | --- | | critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) | A critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/spring-security-web-5.8.16.jargrypeGrype Security Scanner-1395HIGHspring-security-web-5.8.16.jar(1,0): GHSA-mf92-479x-3373-spring-security-web: : GHSA-mf92-479x-3373-spring-security-web: JavaMatcherExactDirectMatch GHSA-mf92-479x-3373 critical vulnerability for spring-security-web package For additional help see: **Vulnerability GHSA-mf92-479x-3373** | Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link | | --- | --- | --- | --- | --- | --- | --- | --- | | critical | spring-security-web | 5.8.16 | | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/spring-security-web-5.8.16.jar | github:language:java | [GHSA-mf92-479x-3373](https://github.com/advisories/GHSA-mf92-479x-3373) | A critical vulnerability in java-archive package: spring-security-web, version 5.8.16 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/spring-security-web-5.8.16.jarGHSA-mf92-479x-3373-spring-security-web33 warnings (high: 2, normal: 1)