A
AlethiaA
AlethiaReachability Analysis
Scope: ProductionLast Scan: 2m agoTotal Assets
800Ingested
Vulnerable
214CVE Matches
Reachable
50Actionable
Severity
Vulnerability
Location
Evidence Peek
ACTION:Upgrade Libraries2
CRITICAL
OS Command Injection
CVE-2024-3094xz-utils@5.6.1
src/backend/utils/compressor.ts:42
exec(`xz -d ${filename}`)
LOW
Regular Expression Denial of Service
CVE-2022-25883semver@7.3.5
package.json
Direct dependency
ACTION:Sanitize Inputs2
HIGH
Prototype Pollution
CVE-2023-45133fast-json-patch@3.1.0
src/api/handlers/patch.ts:15
jsonpatch.applyPatch(doc, req.body)
CRITICAL
SQL Injection
CVE-2024-0012pg@8.11.0
src/db/users.ts:25
query(`SELECT * FROM users WHERE id = ${id}`)
ACTION:Config Changes1
MEDIUM
Information Exposure
CVE-2023-1234express@4.17.1
src/server.ts:88
res.send(error.stack)
Noise Reduction
94%
750 false positives filtered
Threat TickerLIVE
- CRITICAL: Spring Core RCE detected
- New CVE-2024-3094 definitions loaded
- Scan completed for billing-service
Session Audit
Ingested 4 files10:42 AM
Ignored CVE-2023-12...10:38 AM
Session started10:35 AM