...
Nexus URL: https://nexus.akraino.org/content/sites/logs/fujitsu/job/sdt/r7/sdt-vuls/1/
There are 5 CVEs with 6 CVEs with a CVSS score >= 9.0. These These are exceptions requested here:
Release 7: Akraino CVE and KHV Vulnerability Exception Request
| CVE-ID | CVSS | NVD | Fix/Notes |
| CVE-2022-3643 | 10.0 | https://nvd.nist.gov/vuln/detail/CVE-2022-3643 | Fix not yet available |
| CVE-2016-1585 | 9.8 | https://nvd.nist.gov/vuln/detail/CVE-2016-1585 | No fix available |
| CVE-2022-0318 | 9.8 | https://nvd.nist.gov/vuln/detail/CVE-2022-0318 | Fix not yet available |
| CVE-2022-192732221 | 9.8 | https://nvd.nist.gov/vuln/detail/CVE-2022-192732221 | TODO: Appears fixedFix not yet available |
| CVE-2022-203853649 | 9.8 | https://nvd.nist.gov/vuln/detail/CVE-2022-203853649 | Fix not yet No fix available |
| CVE-2022-3743440674 | 9.8 | https://nvd.nist.gov/vuln/detail/CVE-2022-3743440674 | TODO: Appears fixed No fix available (for zlib1g, zlib1g-dev) 1:1.2.11.dfsg-2ubuntu1.5 is released, we need to upgrade. |
Lynis
Nexus URL (manual run, with fixes): https://nexus.akraino.org/content/sites/logs/fujitsu/job/sdt/r7/sdt-lynis/2/
...