Both tickets mentioned in the title are false positives.
In OJSI jira they are marked as "Not a bug" thus they shouldn't be
considered as "fixed security issues"
Issue-ID: OJSI-176
Issue-ID: OJSI-177
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: I4d3c0939b5df68ed42e334d492a2751143b41e39
- `OJSI-104 <https://jira.onap.org/browse/OJSI-104>`_ - appc exposes plain text HTTP endpoint using port 30211
- `OJSI-113 <https://jira.onap.org/browse/OJSI-113>`_ - appc exposes plain text HTTP endpoint using port 30230
- `OJSI-146 <https://jira.onap.org/browse/OJSI-146>`_ - appc-cdt exposes plain text HTTP endpoint using port 30289
- - `OJSI-176 <https://jira.onap.org/browse/OJSI-176>`_ - dev-appc-appc exposes JDWP on port 1830 which allows for arbitrary code execution
- - `OJSI-177 <https://jira.onap.org/browse/OJSI-177>`_ - dev-appc-appc exposes JDWP on port 8101 which allows for arbitrary code execution
- `OJSI-185 <https://jira.onap.org/browse/OJSI-185>`_ - appc exposes ssh service on port 30231
Version: 1.5.3