This vulnerability report of the CX components is scanned with Trivy Version 2.
ActiveMQ
There is 1 HIGH severity vulnerability in the report, fix is not available in the latest patch version of the stable release of ActiveMQ, which is 6.1.6.
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
Active MQ |
Trivy |
0 |
6 |
1 |
0 |
|
Agent Desk
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
Unfied-Agent |
Trivy |
0 |
0 |
0 |
0 |
|
|
Grafana |
Trivy |
101 |
62 |
77 |
9 |
|
Campaigns
The critical and high-severity vulnerabilities in extended dependencies do not have a fix available currently.
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
campaigns |
Trivy |
58 |
14 |
4 |
1 |
|
|
conversation-studio |
Trivy |
114 |
21 |
10 |
1 |
|
|
campaign-scheduler |
Trivy |
2 |
4 |
3 |
0 |
|
Channels
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
360-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
facebook-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
instagram-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
hc_smpp_connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
telegram-connector |
Trivy |
1 |
3 |
0 |
0 |
|
|
twilio-connector |
Trivy |
1 |
3 |
0 |
0 |
|
|
twitter-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
viber-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
email-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
whatsapp-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
ms-exchange |
Trivy |
1 |
2 |
0 |
0 |
ms-exchange-email-connector.json
|
|
youtube-connector |
Trivy |
1 |
2 |
0 |
0 |
|
|
linkedinconnector |
Trivy |
1 |
3 |
0 |
0 |
|
Core
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
agent-manager |
Trivy |
2 |
1 |
2 |
0 |
|
|
bot-framework |
Trivy |
2 |
5 |
4 |
0 |
|
|
customer-channel-manager |
Trivy |
2 |
5 |
3 |
0 |
|
|
cim-backend |
Trivy |
1 |
0 |
1 |
0 |
|
|
conversation-manager |
Trivy |
2 |
6 |
3 |
0 |
|
|
conversation-monitor |
Trivy |
2 |
5 |
3 |
0 |
|
|
customer-widget |
Trivy |
0 |
0 |
0 |
0 |
|
|
cx-load-hub |
Trivy |
5 |
8 |
3 |
0 |
|
|
cx-tenant |
Trivy |
1 |
0 |
1 |
0 |
|
|
file-engine |
Trivy |
1 |
3 |
4 |
0 |
|
|
historical-reports-manager |
Trivy |
2 |
4 |
3 |
0 |
historical-reports-manager.json
|
|
license-manager |
Trivy |
3 |
4 |
5 |
0 |
|
|
realtime-reports-manager |
Trivy |
2 |
5 |
5 |
0 |
|
|
media-routing-engine |
Trivy |
3 |
12 |
4 |
0 |
|
|
state-events-logger |
Trivy |
2 |
4 |
3 |
0 |
|
|
team-announcement |
Trivy |
2 |
2 |
1 |
0 |
|
|
unified-admin |
Trivy |
2 |
4 |
1 |
0 |
|
|
web-channel-manager |
Trivy |
2 |
5 |
3 |
0 |
|
|
business-calendar |
Trivy |
2 |
4 |
4 |
0 |
|
Eleveo Middleware
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
|
Trivy |
4 |
16 |
8 |
0 |
|
|
|
Trivy |
94 |
71 |
37 |
7 |
ef_cx_eleveo_recording_runner.json
|
|
|
Trivy |
141 |
108 |
97 |
19 |
|
MTT-Single
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
|
Trivy |
114 |
26 |
13 |
2 |
|
|
|
Trivy |
114 |
21 |
10 |
1 |
|
|
|
Trivy |
58 |
13 |
5 |
1 |
|
QM
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
QM Connector |
Trivy |
3 |
5 |
5 |
0 |
|
Qm-cisco-sync-service
Scan Report
|
Component |
Engine |
Low |
Medium |
High |
Critical |
Report |
|---|---|---|---|---|---|---|
|
qm-cisco-sync-service |
Trivy |
3 |
4 |
1 |
0 |
|