Press CTR-C to copy XML [help]

Dependency-Check Report

Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

Project: JDBC SSH

Scan Information (show all):

Display: Showing Vulnerable Dependencies

Dependency CPE GAV Highest Severity CVE Count CPE Confidence Evidence Count
logback-classic-1.1.2.jar ch.qos.logback:logback-classic:1.1.2   0 16
logback-core-1.1.2.jar ch.qos.logback:logback-core:1.1.2   0 16
jsch-0.1.51.jar com.jcraft:jsch:0.1.51   0 13
jzlib-1.1.2.jar cpe:/a:jcraft:jzlib:1.1.2 com.jcraft:jzlib:1.1.2   0 LOW 11
slf4j-api-1.7.10.jar org.slf4j:slf4j-api:1.7.10   0 13

Dependencies

logback-classic-1.1.2.jar

Description: logback-classic module

License:

Eclipse Public License - v 1.0: http://www.eclipse.org/legal/epl-v10.html
GNU Lesser General Public License: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
File Path: /opt/maven/repository/ch/qos/logback/logback-classic/1.1.2/logback-classic-1.1.2.jar
MD5: 0418F747DBDD3EF5CC5F5AA85629609D
SHA1: B316E9737EEA25E9DDD6D88EAEEE76878045C6B2

Identifiers

logback-core-1.1.2.jar

Description: logback-core module

License:

Eclipse Public License - v 1.0: http://www.eclipse.org/legal/epl-v10.html
GNU Lesser General Public License: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
File Path: /opt/maven/repository/ch/qos/logback/logback-core/1.1.2/logback-core-1.1.2.jar
MD5: AE3B1F69540D87C5BB68260818764FE3
SHA1: 2D23694879C2C12F125DAC5076BDFD5D771CC4CB

Identifiers

jsch-0.1.51.jar

Description: JSch is a pure Java implementation of SSH2

License:

Revised BSD: http://www.jcraft.com/jsch/LICENSE.txt
File Path: /opt/maven/repository/com/jcraft/jsch/0.1.51/jsch-0.1.51.jar
MD5: 6F94A6D5DAB69DCB0A75350382223AF6
SHA1: 6CEEE2696B07CC320D0E1AAEA82C7B40768ACA0F

Identifiers

jzlib-1.1.2.jar

Description: JZlib is a re-implementation of zlib in pure Java

License:

Revised BSD: http://www.jcraft.com/jzlib/LICENSE.txt
File Path: /opt/maven/repository/com/jcraft/jzlib/1.1.2/jzlib-1.1.2.jar
MD5: F0C186B079737A61DE9E8459A3637A4B
SHA1: A7D1993E6362271999BE944B143352825CB5D966

Identifiers

  • maven: com.jcraft:jzlib:1.1.2   Confidence:HIGHEST
  • cpe: cpe:/a:jcraft:jzlib:1.1.2   Confidence:LOW   

slf4j-api-1.7.10.jar

Description: The slf4j API

File Path: /opt/maven/repository/org/slf4j/slf4j-api/1.7.10/slf4j-api-1.7.10.jar
MD5: 3459BDFBE4A9ABED1B5B32D2E0C520EE
SHA1: 5B338F206827D88ACD890739F400A9B7664E5984

Identifiers



This report contains data retrieved from the National Vulnerability Database.