chore(findings): mongodb/mongodb-enterprise/mongodb-enterprise-ops-manager
Summary
mongodb/mongodb-enterprise/mongodb-enterprise-ops-manager has 9 new findings discovered during continuous monitoring.
| id | source | severity | package |
|---|---|---|---|
| CVE-2020-36518 | twistlock_cve | High | com.fasterxml.jackson.core_jackson-databind-2.12.3 |
| GHSA-57j2-w4cx-62h2 | anchore_cve | High | jackson-databind-2.12.3 |
| CVE-2020-9493 | anchore_cve | Critical | log4j-over-slf4j-1.7.30 |
| CVE-2022-27452 | twistlock_cve | Moderate | mariadb-connector-c-3.1.11-2.el8_3 |
| CVE-2022-27452 | twistlock_cve | Moderate | mariadb-connector-c-config-3.1.11-2.el8_3 |
| CVE-2022-27451 | twistlock_cve | Moderate | mariadb-connector-c-3.1.11-2.el8_3 |
| CVE-2022-27451 | twistlock_cve | Moderate | mariadb-connector-c-config-3.1.11-2.el8_3 |
| CVE-2022-29458 | twistlock_cve | Moderate | ncurses-6.1-9.20180224.el8 |
| CVE-2022-29458 | anchore_cve | Medium | ncurses-6.1-9.20180224.el8 |
VAT: https://vat.dso.mil/vat/container/18270?branch=master
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/mongodb/mongodb-enterprise/mongodb-enterprise-ops-manager/-/jobs/7570551
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official
Edited by Ghost User