V6 [VAS] Bug 11541: filing holding tree not retrieved #1429

laedanrex · 2023-07-27T13:22:28Z

Description

Suite à un ticket support, le classement arbre et plan n'est pas appelé en v5
la modification est reporté en v6

Type de changement:

Correction

Contributeur

Indiquer qui a développé cette fonctionnalité

VAS (Vitam Accessible en Service)

TDevillechabrolle · 2023-07-27T14:24:32Z

Checkmarx One – Scan Summary & Details – 27dff2c5-c0be-462b-ad8c-bfec71d32b77

New Issues

Issue	Source File / Package	Checkmarx Insight
CVE-2020-7793	Npm-ua-parser-js-0.7.22	Vulnerable Package
CVE-2021-27292	Npm-ua-parser-js-0.7.22	Vulnerable Package
CVE-2022-25927	Npm-ua-parser-js-0.7.22	Vulnerable Package
CVE-2023-32695	Npm-socket.io-parser-3.3.3	Vulnerable Package
CVE-2023-38286	Maven-org.thymeleaf:thymeleaf-3.0.12.RELEASE	Vulnerable Package
CVE-2019-5786	Npm-puppeteer-1.20.0	Vulnerable Package
CVE-2021-23495	Npm-karma-5.2.3	Vulnerable Package
CVE-2022-0437	Npm-karma-5.2.3	Vulnerable Package
CVE-2023-2976	Maven-com.google.guava:guava-29.0-jre	Vulnerable Package
Cx816df59e-1cc9	Npm-marked-0.7.0	Vulnerable Package
Unchecked_Input_for_Loop_Condition	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 322	Attack Vector
Unchecked_Input_for_Loop_Condition	/api/api-pastis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/controller/PastisController.java: 105	Attack Vector
CVE-2020-8908	Maven-com.google.guava:guava-29.0-jre	Vulnerable Package
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 322	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 181	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 322	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 277	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 228	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 239	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 311	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 277	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 228	Attack Vector
Log_Forging	/ui/ui-archive-search/src/main/java/fr/gouv/vitamui/archives/search/rest/ArchivesSearchController.java: 311	Attack Vector
Log_Forging	/api/api-archive-search/archive-search-internal/src/main/java/fr/gouv/vitamui/archive/internal/server/rest/ArchiveSearchInternalController.java: 261	Attack Vector
Log_Forging	/api/api-archive-search/archive-search-internal/src/main/java/fr/gouv/vitamui/archive/internal/server/rest/ArchiveSearchInternalController.java: 201	Attack Vector
Log_Forging	/api/api-archive-search/archive-search-internal/src/main/java/fr/gouv/vitamui/archive/internal/server/rest/ArchiveSearchInternalController.java: 238	Attack Vector
Log_Forging	/api/api-archive-search/archive-search-internal/src/main/java/fr/gouv/vitamui/archive/internal/server/rest/ArchiveSearchInternalController.java: 225	Attack Vector
Log_Forging	/api/api-archive-search/archive-search-internal/src/main/java/fr/gouv/vitamui/archive/internal/server/rest/ArchiveSearchInternalController.java: 249	Attack Vector
Log_Forging	/api/api-archive-search/archive-search-internal/src/main/java/fr/gouv/vitamui/archive/internal/server/rest/ArchiveSearchInternalController.java: 213	Attack Vector
Log_Forging	/ui/ui-collect/src/main/java/fr/gouv/vitamui/collect/rest/ProjectObjectGroupController.java: 82	Attack Vector
Log_Forging	/api/api-pastis/pastis-external/src/main/java/fr/gouv/vitamui/pastis/server/rest/PastisController.java: 80	Attack Vector
Log_Forging	/api/api-pastis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/controller/PastisController.java: 92	Attack Vector
Log_Forging	/api/api-pastis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/controller/PastisController.java: 159	Attack Vector
Log_Forging	/api/api-pastis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/controller/PastisController.java: 159	Attack Vector
Log_Forging	/api/api-pastis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/controller/PastisController.java: 159	Attack Vector
Log_Forging	/api/api-pastis/pastis-standalone/src/main/java/fr/gouv/vitamui/pastis/standalone/controller/PastisController.java: 159	Attack Vector

Fixed Issues

Issue	Source File / Package	Checkmarx Insight
Reflected_XSS_All_Clients	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Reflected_XSS_All_Clients	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Reflected_XSS_All_Clients	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Reflected_XSS_All_Clients	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Reflected_XSS_All_Clients	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Reflected_XSS_All_Clients	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Reflected_XSS_All_Clients	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
Reflected_XSS_All_Clients	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Cleartext_Submission_of_Sensitive_Information	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 110	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 118	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 110	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 118	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
Privacy_Violation	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
SSRF	/api/api-iam/iam-security/src/main/java/fr/gouv/vitamui/iam/security/service/InternalSecurityService.java: 150	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 116	Attack Vector
SSRF	/commons/commons-rest/src/main/java/fr/gouv/vitamui/commons/rest/client/ExternalHttpContext.java: 115

More results are available on AST platform

[VAS] Bug 11541: filing holding tree not retrieved

b4b75fd

laedanrex added bug Something isn't working VAS VAS contribution labels Jul 27, 2023

laedanrex added this to the IT 122 milestone Jul 27, 2023

laedanrex self-assigned this Jul 27, 2023

laedanrex changed the base branch from develop to master_6.x July 27, 2023 13:25

laedanrex changed the title ~~Vas 11541 bug filing holding not call v6~~ V6 [VAS] Bug 11541: filing holding tree not retrieved Jul 27, 2023

bbenaissa approved these changes Jul 27, 2023

View reviewed changes

GiooDev merged commit 4a5f507 into master_6.x Jul 28, 2023

GiooDev deleted the vas-11541-bug-filing-holding-not-call-v6 branch July 28, 2023 17:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

V6 [VAS] Bug 11541: filing holding tree not retrieved #1429

V6 [VAS] Bug 11541: filing holding tree not retrieved #1429

laedanrex commented Jul 27, 2023 •

edited

Loading

TDevillechabrolle commented Jul 27, 2023

V6 [VAS] Bug 11541: filing holding tree not retrieved #1429

V6 [VAS] Bug 11541: filing holding tree not retrieved #1429

Conversation

laedanrex commented Jul 27, 2023 • edited Loading

Description

Type de changement:

Contributeur

TDevillechabrolle commented Jul 27, 2023

New Issues

Fixed Issues

laedanrex commented Jul 27, 2023 •

edited

Loading