Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: Operating System and Hardware Information

com.github.oshi:oshi-parent:6.4.13

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
jackson-core-2.16.1.jarcpe:2.3:a:fasterxml:jackson-modules-java8:2.16.1:*:*:*:*:*:*:*pkg:maven/com.fasterxml.jackson.core/jackson-core@2.16.1 0Low47
jackson-databind-2.16.1.jarcpe:2.3:a:fasterxml:jackson-databind:2.16.1:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.16.1:*:*:*:*:*:*:*
pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.16.1 0Highest41
jfreechart-1.5.4.jarcpe:2.3:a:time_project:time:1.5.4:*:*:*:*:*:*:*pkg:maven/org.jfree/jfreechart@1.5.4 0Low37
jna-5.14.0.jarcpe:2.3:a:oracle:java_se:5.14.0:*:*:*:*:*:*:*pkg:maven/net.java.dev.jna/jna@5.14.0 0Low48
jna-jpms-5.14.0.jar: jnidispatch.dll 02
jna-jpms-5.14.0.jar: jnidispatch.dll 02
jna-jpms-5.14.0.jar: jnidispatch.dll 02
jna-platform-5.14.0.jarpkg:maven/net.java.dev.jna/jna-platform@5.14.0 044
jna-platform-jpms-5.14.0.jarpkg:maven/net.java.dev.jna/jna-platform-jpms@5.14.0 044
slf4j-api-2.0.12.jarpkg:maven/org.slf4j/slf4j-api@2.0.12 029
slf4j-simple-2.0.12.jarpkg:maven/org.slf4j/slf4j-simple@2.0.12 037

Dependencies (vulnerable)

jackson-core-2.16.1.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.16.1/jackson-core-2.16.1.jar
MD5: 0f51c6a7d713aed6e044cf1692bb59f4
SHA1: 9456bb3cdd0f79f91a5f730a1b1bb041a380c91f
SHA256:f5f8ef90609e64fec82eb908e497dc7d81b2eb983fe509b870292a193cde4dfb
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-dist:compile

jackson-core-2.16.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.16.1
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13

Identifiers

jackson-databind-2.16.1.jar

Description:

General data-binding functionality for Jackson: works on core streaming API

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.16.1/jackson-databind-2.16.1.jar
MD5: ac71b868569d329136f2c63f34dd2c89
SHA1: 02a16efeb840c45af1e2f31753dfe76795278b73
SHA256:baf8a8ebee8f45ef68cdd5e2dd3923b3e296c0937b96ec0b4806aa3a31bccd1d
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-dist:compile

jackson-databind-2.16.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13

Identifiers

jfreechart-1.5.4.jar

Description:

        JFreeChart is a class library, written in Java, for generating charts. 
        Utilising the Java2D API, it supports a wide range of chart types including
        bar charts, pie charts, line charts, XY-plots, time series plots, Sankey charts
        and more.
    

License:

GNU Lesser General Public Licence: http://www.gnu.org/licenses/lgpl.txt
File Path: /home/runner/.m2/repository/org/jfree/jfreechart/1.5.4/jfreechart-1.5.4.jar
MD5: 36e760314d688997c7e5ad135a3efc44
SHA1: 9a5edddb05a3ca4fbc0628c594e6641a6f36a3b4
SHA256:cd0649b04b64f2638b55c7c3ac24788ff064b777bbbaf1b952f82ee078ed8b81
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-dist:compile

jfreechart-1.5.4.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13

Identifiers

jna-5.14.0.jar

Description:

Java Native Access

License:

LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna/5.14.0/jna-5.14.0.jar
MD5: 8b3cc652920435ad9f801e6d9b2a3497
SHA1: 67bf3eaea4f0718cb376a181a629e5f88fa1c9dd
SHA256:34ed1e1f27fa896bca50dbc4e99cf3732967cec387a7a0d5e3486c09673fe8c6
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-dist:compile
  • oshi-core:compile

jna-5.14.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core@6.4.13

Identifiers

jna-jpms-5.14.0.jar: jnidispatch.dll

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-jpms/5.14.0/jna-jpms-5.14.0.jar/com/sun/jna/win32-aarch64/jnidispatch.dll
MD5: f6bef568e690d361a5dcc165f5ad4b1f
SHA1: 05638a4aaafa689a6c246530823afdc18d3fd438
SHA256:b9d1479b9619b7ece4a36b6ae31365ffaf15a1355d4f6da02f8b5f09df2fa82f
Referenced In Projects/Scopes:

  • oshi-demo:compile
  • oshi-core-java11:compile
  • oshi-dist:compile
  • oshi-core:compile

Identifiers

  • None

jna-jpms-5.14.0.jar: jnidispatch.dll

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-jpms/5.14.0/jna-jpms-5.14.0.jar/com/sun/jna/win32-x86-64/jnidispatch.dll
MD5: 719d6ba1946c25aa61ce82f90d77ffd5
SHA1: 94d2191378cac5719daecc826fc116816284c406
SHA256:69c45175ecfd25af023f96ac0bb2c45e6a95e3ba8a5a50ee7969ccab14825c44
Referenced In Projects/Scopes:

  • oshi-demo:compile
  • oshi-core-java11:compile
  • oshi-dist:compile
  • oshi-core:compile

Identifiers

  • None

jna-jpms-5.14.0.jar: jnidispatch.dll

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-jpms/5.14.0/jna-jpms-5.14.0.jar/com/sun/jna/win32-x86/jnidispatch.dll
MD5: e15183ef9c6c255b76fda73d01ca7ecb
SHA1: f816f998c43204230d9ea3eecffb5f8372a32c2e
SHA256:38650a0612730c52580c9f32ff766b44b1c5a426d52e7dd7a53687bf3389ac2c
Referenced In Projects/Scopes:

  • oshi-demo:compile
  • oshi-core-java11:compile
  • oshi-dist:compile
  • oshi-core:compile

Identifiers

  • None

jna-platform-5.14.0.jar

Description:

Java Native Access Platform

License:

LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-platform/5.14.0/jna-platform-5.14.0.jar
MD5: 3bc3f09a698e6ad250dd093f64fbb8a7
SHA1: 28934d48aed814f11e4c584da55c49fa7032b31b
SHA256:ae4caceb3840730c2537f9b7fb55a01baba580286b4122951488bcee558c2449
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-dist:compile
  • oshi-core:compile

jna-platform-5.14.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core@6.4.13

Identifiers

jna-platform-jpms-5.14.0.jar

Description:

Java Native Access Platform

License:

LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-platform-jpms/5.14.0/jna-platform-jpms-5.14.0.jar
MD5: e47bdb4498394d706a5dfb2173006531
SHA1: 24fde384a42c2c75c46116edda48895e5763fc85
SHA256:60dd009545f8cef45a9e6e31cace03dc28ab335220a64b24083045eddc351d45
Referenced In Projects/Scopes:
  • oshi-core-java11:compile
  • oshi-dist:compile

jna-platform-jpms-5.14.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-core-java11@6.4.13
  • pkg:maven/com.github.oshi/oshi-core-java11@6.4.13

Identifiers

slf4j-api-2.0.12.jar

Description:

The slf4j API

License:

http://www.opensource.org/licenses/mit-license.php
File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.12/slf4j-api-2.0.12.jar
MD5: 86eb051f2e2d6497a3a57810c963a9d6
SHA1: 48f109a2a6d8f446c794f3e3fa0d86df0cdfa312
SHA256:a79502b8abdfbd722846a27691226a4088682d6d35654f9b80e2a9ccacf7ed47
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-core-java11:compile
  • oshi-dist:compile
  • oshi-core:compile

slf4j-api-2.0.12.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core@6.4.13
  • pkg:maven/com.github.oshi/oshi-core-java11@6.4.13

Identifiers

slf4j-simple-2.0.12.jar

Description:

SLF4J Simple Provider

License:

http://www.opensource.org/licenses/mit-license.php
File Path: /home/runner/.m2/repository/org/slf4j/slf4j-simple/2.0.12/slf4j-simple-2.0.12.jar
MD5: 66daf0383d0fef0dbac0d8eb7dbe4e49
SHA1: 5fb15030fb6158ef4f63ce4f889f72f4259a7bc3
SHA256:4cd8f3d6236044600e7054da7c124c6d2e9f45eb43c77d4e9b093fe1095edc85
Referenced In Projects/Scopes:
  • oshi-demo:compile
  • oshi-dist:compile

slf4j-simple-2.0.12.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13
  • pkg:maven/com.github.oshi/oshi-demo@6.4.13

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.