-
Home
- Project Documentation Project Reports 11
SpotBugs Bug Detector Report
The following document contains the results of SpotBugs
SpotBugs Version is 4.8.2
Threshold is medium
Effort is default
Summary
| Classes | Bugs | Errors | Missing Classes |
|---|---|---|---|
| 473 | 516 | 0 | 0 |
Files
org.sentrysoftware.wbem.client.WbemCimDataHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Redundant nullcheck of cimProperty, which is known to be non-null in org.sentrysoftware.wbem.client.WbemCimDataHandler.getCimPropertyAsString(String, CIMInstance, String) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 106 | High |
org.sentrysoftware.wbem.client.WbemQueryResult
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.client.WbemQueryResult.getProperties() may expose internal representation by returning WbemQueryResult.properties | MALICIOUS_CODE | EI_EXPOSE_REP | 47 | Medium |
| org.sentrysoftware.wbem.client.WbemQueryResult.getValues() may expose internal representation by returning WbemQueryResult.values | MALICIOUS_CODE | EI_EXPOSE_REP | 51 | Medium |
| new org.sentrysoftware.wbem.client.WbemQueryResult(List, List) may expose internal representation by storing an externally mutable object into WbemQueryResult.properties | MALICIOUS_CODE | EI_EXPOSE_REP2 | 42 | Medium |
| new org.sentrysoftware.wbem.client.WbemQueryResult(List, List) may expose internal representation by storing an externally mutable object into WbemQueryResult.values | MALICIOUS_CODE | EI_EXPOSE_REP2 | 43 | Medium |
org.sentrysoftware.wbem.client.WqlQuery
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.client.WqlQuery.getOriginalProperties() may expose internal representation by returning WqlQuery.originalProperties | MALICIOUS_CODE | EI_EXPOSE_REP | 99 | Medium |
| org.sentrysoftware.wbem.client.WqlQuery.getProperties() may expose internal representation by returning WqlQuery.properties | MALICIOUS_CODE | EI_EXPOSE_REP | 95 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMArgument
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMArgument at new org.sentrysoftware.wbem.javax.cim.CIMArgument(String, CIMDataType, Object) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 84 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMClass
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMClass.getObjectPath() may expose internal representation by returning CIMClass.iObjPath | MALICIOUS_CODE | EI_EXPOSE_REP | 355 | Medium |
| org.sentrysoftware.wbem.javax.cim.CIMClass defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 207-215 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMClassProperty
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMClassProperty defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 117-119 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMDataType
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDataType at new org.sentrysoftware.wbem.javax.cim.CIMDataType(int, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 570 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDataType at new org.sentrysoftware.wbem.javax.cim.CIMDataType(int, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 548 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDataType at new org.sentrysoftware.wbem.javax.cim.CIMDataType(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 583 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDataType at new org.sentrysoftware.wbem.javax.cim.CIMDataType(String, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 600 | Medium |
| org.sentrysoftware.wbem.javax.cim.CIMDataType defines equals and uses Object.hashCode() | BAD_PRACTICE | HE_EQUALS_USE_HASHCODE | 618-624 | High |
org.sentrysoftware.wbem.javax.cim.CIMDateTime
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDateTime at new org.sentrysoftware.wbem.javax.cim.CIMDateTime(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 99 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMDateTimeAbsolute
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDateTimeAbsolute at new org.sentrysoftware.wbem.javax.cim.CIMDateTimeAbsolute(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 131 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDateTimeAbsolute at new org.sentrysoftware.wbem.javax.cim.CIMDateTimeAbsolute(Calendar) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 113 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval at new org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval(int, int, int, int, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 125 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval at new org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval(long) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 211 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval at new org.sentrysoftware.wbem.javax.cim.CIMDateTimeInterval(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 244 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMElement
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMElement at new org.sentrysoftware.wbem.javax.cim.CIMElement(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 77 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMFlavor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.javax.cim.CIMFlavor.getFlavors() may expose internal representation by returning CIMFlavor.flavors | MALICIOUS_CODE | MS_EXPOSE_REP | 86 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMInstance
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMInstance at new org.sentrysoftware.wbem.javax.cim.CIMInstance(CIMObjectPath, CIMProperty[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 99 | Medium |
| org.sentrysoftware.wbem.javax.cim.CIMInstance.getObjectPath() may expose internal representation by returning CIMInstance.iObjPath | MALICIOUS_CODE | EI_EXPOSE_REP | 249 | Medium |
| new org.sentrysoftware.wbem.javax.cim.CIMInstance(CIMObjectPath, CIMProperty[]) may expose internal representation by storing an externally mutable object into CIMInstance.iObjPath | MALICIOUS_CODE | EI_EXPOSE_REP2 | 110 | Medium |
| new org.sentrysoftware.wbem.javax.cim.CIMInstance(CIMObjectPath, CIMProperty[]) may expose internal representation by storing an externally mutable object into CIMInstance.iProps | MALICIOUS_CODE | EI_EXPOSE_REP2 | 112 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMMethod
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMMethod defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 122-127 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMObjectPath
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMObjectPath at new org.sentrysoftware.wbem.javax.cim.CIMObjectPath(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 336 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMObjectPath at new org.sentrysoftware.wbem.javax.cim.CIMObjectPath(String, String, String, String, String, CIMProperty[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 397 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMObjectPath at new org.sentrysoftware.wbem.javax.cim.CIMObjectPath(String, String, String, String, String, CIMProperty[], String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 439 | Medium |
| org.sentrysoftware.wbem.javax.cim.CIMObjectPath.equals(Object) is unusual | STYLE | EQ_UNUSUAL | 457 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMParameter
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMParameter defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 110-113 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMProperty
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMProperty defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 131-134 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMQualifier
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMQualifier defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 140-143 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMQualifierType
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMQualifierType at new org.sentrysoftware.wbem.javax.cim.CIMQualifierType(CIMObjectPath, CIMDataType, Object, int, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 110 | Medium |
| org.sentrysoftware.wbem.javax.cim.CIMQualifierType.getObjectPath() may expose internal representation by returning CIMQualifierType.iObjPath | MALICIOUS_CODE | EI_EXPOSE_REP | 147 | Medium |
| new org.sentrysoftware.wbem.javax.cim.CIMQualifierType(CIMObjectPath, CIMDataType, Object, int, int) may expose internal representation by storing an externally mutable object into CIMQualifierType.iObjPath | MALICIOUS_CODE | EI_EXPOSE_REP2 | 107 | Medium |
| org.sentrysoftware.wbem.javax.cim.CIMQualifierType defines equals but not hashCode | BAD_PRACTICE | HE_EQUALS_NO_HASHCODE | 125-128 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMScope
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.javax.cim.CIMScope.getScopes() may expose internal representation by returning CIMScope.SCOPES | MALICIOUS_CODE | MS_EXPOSE_REP | 110 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMTypedElement
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.javax.cim.CIMTypedElement.getDataType() may expose internal representation by returning CIMTypedElement.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 100 | Medium |
| new org.sentrysoftware.wbem.javax.cim.CIMTypedElement(String, CIMDataType) may expose internal representation by storing an externally mutable object into CIMTypedElement.iType | MALICIOUS_CODE | EI_EXPOSE_REP2 | 72 | Medium |
org.sentrysoftware.wbem.javax.cim.CIMValuedElement
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.CIMValuedElement at new org.sentrysoftware.wbem.javax.cim.CIMValuedElement(String, CIMDataType, Object) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 94 | Medium |
org.sentrysoftware.wbem.javax.cim.UnsignedInteger16
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger16 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger16(int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 104 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger16 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger16(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 118 | Medium |
org.sentrysoftware.wbem.javax.cim.UnsignedInteger32
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger32 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger32(long) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 104 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger32 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger32(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 118 | Medium |
org.sentrysoftware.wbem.javax.cim.UnsignedInteger64
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger64 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger64(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 142 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger64 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger64(BigInteger) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 109 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger64 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger64(byte[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 125 | Medium |
org.sentrysoftware.wbem.javax.cim.UnsignedInteger8
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger8 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger8(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 120 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.cim.UnsignedInteger8 at new org.sentrysoftware.wbem.javax.cim.UnsignedInteger8(short) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 106 | Medium |
org.sentrysoftware.wbem.javax.wbem.WBEMException
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.WBEMException at new org.sentrysoftware.wbem.javax.wbem.WBEMException(int, String, CIMInstance[], Throwable) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 321 | Medium |
| org.sentrysoftware.wbem.javax.wbem.WBEMException.getCIMErrors() may expose internal representation by returning WBEMException.iCimErrors | MALICIOUS_CODE | EI_EXPOSE_REP | 344 | Medium |
| new org.sentrysoftware.wbem.javax.wbem.WBEMException(int, String, CIMInstance[], Throwable) may expose internal representation by storing an externally mutable object into WBEMException.iCimErrors | MALICIOUS_CODE | EI_EXPOSE_REP2 | 323 | Medium |
org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential at new org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 93 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential at new org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential(String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 113 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential at new org.sentrysoftware.wbem.javax.wbem.client.PasswordCredential(char[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 77 | Medium |
org.sentrysoftware.wbem.javax.wbem.client.RoleCredential
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.RoleCredential at new org.sentrysoftware.wbem.javax.wbem.client.RoleCredential(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 89 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.RoleCredential at new org.sentrysoftware.wbem.javax.wbem.client.RoleCredential(String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 104 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.RoleCredential at new org.sentrysoftware.wbem.javax.wbem.client.RoleCredential(char[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 76 | Medium |
org.sentrysoftware.wbem.javax.wbem.client.UserPrincipal
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.UserPrincipal at new org.sentrysoftware.wbem.javax.wbem.client.UserPrincipal(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 72 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.javax.wbem.client.UserPrincipal at new org.sentrysoftware.wbem.javax.wbem.client.UserPrincipal(String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 89 | Medium |
org.sentrysoftware.wbem.javax.wbem.client.WBEMClientFactory
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.javax.wbem.client.WBEMClientFactory.getSupportedProtocols() may expose internal representation by returning WBEMClientFactory.cProtocols | MALICIOUS_CODE | MS_EXPOSE_REP | 113 | Medium |
org.sentrysoftware.wbem.javax.wbem.listener.WBEMListenerFactory
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.javax.wbem.listener.WBEMListenerFactory.getProtocols() may expose internal representation by returning WBEMListenerFactory.PROTOCOLS | MALICIOUS_CODE | MS_EXPOSE_REP | 106 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.LogAndTraceManager
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.sblim.cimclient.LogAndTraceManager.getManager() may expose internal representation by returning LogAndTraceManager.cManager | MALICIOUS_CODE | MS_EXPOSE_REP | 69 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.WBEMListenerSBLIM$WBEMListenerImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.WBEMListenerSBLIM$WBEMListenerImpl at new org.sentrysoftware.wbem.sblim.cimclient.WBEMListenerSBLIM$WBEMListenerImpl(WBEMListenerSBLIM, String, int, boolean, EventListener, Properties) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 125 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.WBEMListenerSBLIM$WBEMListenerImpl(WBEMListenerSBLIM, String, int, boolean, EventListener, Properties) may expose internal representation by storing an externally mutable object into WBEMListenerSBLIM$WBEMListenerImpl.this$0 | MALICIOUS_CODE | EI_EXPOSE_REP2 | 121 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog.EVENT_ADD isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 257 | High |
| org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog.EVENT_EXPIRE isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 267 | High |
| org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog.EVENT_REMOVE isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 262 | High |
| org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog.EVENT_RENEW isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 272 | High |
org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog$AdvertisementDecorator
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog$AdvertisementDecorator at new org.sentrysoftware.wbem.sblim.cimclient.discovery.AdvertisementCatalog$AdvertisementDecorator(WBEMServiceAdvertisement) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 121 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.discovery.DiscovererFactory
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.sblim.cimclient.discovery.DiscovererFactory.getSupportedProtocols() may expose internal representation by returning DiscovererFactory.cProtocols | MALICIOUS_CODE | MS_EXPOSE_REP | 88 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.translateNumericObject(Object, CIMDataType, CIMDataType) invokes inefficient new Byte(byte) constructor; use Byte.valueOf(byte) instead | PERFORMANCE | DM_NUMBER_CTOR | 307 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.translateNumericObject(Object, CIMDataType, CIMDataType) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR | 315 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.translateNumericObject(Object, CIMDataType, CIMDataType) invokes inefficient new Long(long) constructor; use Long.valueOf(long) instead | PERFORMANCE | DM_NUMBER_CTOR | 319 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.translateNumericObject(Object, CIMDataType, CIMDataType) invokes inefficient new Short(short) constructor; use Short.valueOf(short) instead | PERFORMANCE | DM_NUMBER_CTOR | 311 | Medium |
| The method name org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.ScalarDataType(int) doesn't start with a lower case letter | BAD_PRACTICE | NM_METHOD_NAMING_CONVENTION | 147-148 | Medium |
| The method name org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.UnboundedArrayDataType(int) doesn't start with a lower case letter | BAD_PRACTICE | NM_METHOD_NAMING_CONVENTION | 181-182 | Medium |
| Switch statement found in org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMHelper.translateNumericObject(Object, CIMDataType, CIMDataType) where default case is missing | STYLE | SF_SWITCH_NO_DEFAULT | 259-300 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMInstanceBuilder
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMInstanceBuilder at new org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMInstanceBuilder(CIMObjectPath, CIMProperty[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 82 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMInstanceBuilder.getAllPropertis() may expose internal representation by returning CIMInstanceBuilder.iProperties | MALICIOUS_CODE | EI_EXPOSE_REP | 114 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString at new org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString(String, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 148 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString at new org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString(UnsignedInteger8[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 87 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString(String, boolean) invokes inefficient new String(String) constructor | PERFORMANCE | DM_STRING_CTOR | 156 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.getBytes() may expose internal representation by returning CIMOctetString.iBytes | MALICIOUS_CODE | EI_EXPOSE_REP | 323 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.iASCIIString; locked 80% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 208 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.iBytes; locked 64% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 195 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.iHexString; locked 58% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 202 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.iReplacementChar; locked 80% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 208 | Medium |
| Redundant nullcheck of org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.iBytes, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.equals(Object) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 222 | Medium |
| Redundant nullcheck of org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.iHexString, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMOctetString.equals(Object) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 246 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMQualifiedElementInterfaceImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMQualifiedElementInterfaceImpl.getQualifiers(boolean) may expose internal representation by returning CIMQualifiedElementInterfaceImpl.iLocalOnlyQualis | MALICIOUS_CODE | EI_EXPOSE_REP | 309 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cim.CIMQualifiedElementInterfaceImpl.getQualifiers(boolean) may expose internal representation by returning CIMQualifiedElementInterfaceImpl.iQualis | MALICIOUS_CODE | EI_EXPOSE_REP | 302 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMClientXML_HelperImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMClientXML_HelperImpl at new org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMClientXML_HelperImpl() will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 214 | Medium |
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMClientXML_HelperImpl.dumpDocument(OutputStream, Document, String): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 297 | High |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMClientXML_HelperImpl.getDocumentBuilder() may expose internal representation by returning CIMClientXML_HelperImpl.iBuilder | MALICIOUS_CODE | EI_EXPOSE_REP | 224 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Unread public/protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage.iIsRequest | STYLE | URF_UNREAD_PUBLIC_OR_PROTECTED_FIELD | 77 | Medium |
| Unread public/protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage.iIsSimple | STYLE | URF_UNREAD_PUBLIC_OR_PROTECTED_FIELD | 75 | Medium |
| Unread public/protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage.iMethod | STYLE | URF_UNREAD_PUBLIC_OR_PROTECTED_FIELD | 93 | Medium |
| Unused public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage.iDoc | STYLE | UUF_UNUSED_PUBLIC_OR_PROTECTED_FIELD | Not available | Medium |
| Unused public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage.iElements | STYLE | UUF_UNUSED_PUBLIC_OR_PROTECTED_FIELD | Not available | Medium |
| Unwritten public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMMessage.iProtocolVersion | STYLE | UWF_UNWRITTEN_PUBLIC_OR_PROTECTED_FIELD | 197 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMRequest
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMRequest.getObjectPath() may expose internal representation by returning CIMRequest.iPath | MALICIOUS_CODE | EI_EXPOSE_REP | 130 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMRequest.getParamValue() may expose internal representation by returning CIMRequest.iParamValue | MALICIOUS_CODE | EI_EXPOSE_REP | 139 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMRequest.setObjectPath(CIMObjectPath) may expose internal representation by storing an externally mutable object into CIMRequest.iPath | MALICIOUS_CODE | EI_EXPOSE_REP2 | 166 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.getAllResponses() may expose internal representation by returning CIMResponse.iResponses | MALICIOUS_CODE | EI_EXPOSE_REP | 152 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.getException() may expose internal representation by returning CIMResponse.iError | MALICIOUS_CODE | EI_EXPOSE_REP | 161 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.getFirstReturnValue() may expose internal representation by returning CIMResponse.iReturnValue | MALICIOUS_CODE | EI_EXPOSE_REP | 199 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.getParamValues() may expose internal representation by returning CIMResponse.iParamValue | MALICIOUS_CODE | EI_EXPOSE_REP | 190 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.setError(WBEMException) may expose internal representation by storing an externally mutable object into CIMResponse.iError | MALICIOUS_CODE | EI_EXPOSE_REP2 | 208 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.setParamValue(Vector) may expose internal representation by storing an externally mutable object into CIMResponse.iParamValue | MALICIOUS_CODE | EI_EXPOSE_REP2 | 217 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMResponse.setReturnValue(Vector) may expose internal representation by storing an externally mutable object into CIMResponse.iReturnValue | MALICIOUS_CODE | EI_EXPOSE_REP2 | 226 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLBuilderImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLBuilderImpl.cimObjectToXMLString(Object): java.io.ByteArrayOutputStream.toString() | I18N | DM_DEFAULT_ENCODING | 1067 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl.parseSingleValue(Element, int) uses the same code for two branches | STYLE | DB_DUPLICATE_BRANCHES | 1661 | Medium |
| Redundant nullcheck of referenceClass, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl.parseCLASSPROPERTYREFERENCE(Element) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 2372 | Medium |
| Switch statement found in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl.createJavaObject(String, String) where default case is missing | STYLE | SF_SWITCH_NO_DEFAULT | 3703-3751 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$EmbObjHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$EmbObjHandler at new org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$EmbObjHandler(Element) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 1905 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$ValueTypeHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$ValueTypeHandler at new org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$ValueTypeHandler(String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 1122 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CIMXMLParserImpl$ValueTypeHandler.setSInt64(String) invokes inefficient new Long(String) constructor; use Long.valueOf(String) instead | PERFORMANCE | DM_NUMBER_CTOR | 1168 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CimXmlSerializer
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Unread field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CimXmlSerializer.CDATA_END; should this field be static? | PERFORMANCE | SS_SHOULD_BE_STATIC | 244 | Medium |
| Unread field: org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.CimXmlSerializer.CDATA_START; should this field be static? | PERFORMANCE | SS_SHOULD_BE_STATIC | 242 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.LocalPathBuilder
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.LocalPathBuilder.getBasePath() may expose internal representation by returning LocalPathBuilder.iBasePath | MALICIOUS_CODE | EI_EXPOSE_REP | 70 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.LocalPathBuilder(CIMObjectPath) may expose internal representation by storing an externally mutable object into LocalPathBuilder.iBasePath | MALICIOUS_CODE | EI_EXPOSE_REP2 | 61 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.TypedValue
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.TypedValue.getType() may expose internal representation by returning TypedValue.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 73 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.TypedValue(CIMDataType, Object) may expose internal representation by storing an externally mutable object into TypedValue.iType | MALICIOUS_CODE | EI_EXPOSE_REP2 | 63 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory.parseEmbeddedObj(String, SAXSession): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 354 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$5
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$5.make(String) invokes inefficient new Byte(String) constructor; use Byte.valueOf(String) instead | PERFORMANCE | DM_NUMBER_CTOR | 462 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$6
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$6.make(String) invokes inefficient new Short(String) constructor; use Short.valueOf(String) instead | PERFORMANCE | DM_NUMBER_CTOR | 472 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$7
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$7.make(String) invokes inefficient new Integer(String) constructor; use Integer.valueOf(String) instead | PERFORMANCE | DM_NUMBER_CTOR | 482 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$8
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.CIMObjectFactory$8.make(String) invokes inefficient new Long(String) constructor; use Long.valueOf(String) instead | PERFORMANCE | DM_NUMBER_CTOR | 492 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.EmbObjHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.EmbObjHandler.getRawType() may expose internal representation by returning EmbObjHandler.iRawType | MALICIOUS_CODE | EI_EXPOSE_REP | 231 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.EmbObjHandler.getType() may expose internal representation by returning EmbObjHandler.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 222 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.EmbObjHandler.addValueNode(AbstractValueNode) may expose internal representation by storing an externally mutable object into EmbObjHandler.iAbsValNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 257 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.EmbObjHandler.initInst(String, Attributes, SAXSession, QualifiedNodeHandler, boolean) may expose internal representation by storing an externally mutable object into EmbObjHandler.iQualiHandler | MALICIOUS_CODE | EI_EXPOSE_REP2 | 128 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.SAXSession
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.SAXSession.getDefLocalPath() may expose internal representation by returning SAXSession.iDefLocalPath | MALICIOUS_CODE | EI_EXPOSE_REP | 75 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.SAXSession(CIMObjectPath) may expose internal representation by storing an externally mutable object into SAXSession.iDefLocalPath | MALICIOUS_CODE | EI_EXPOSE_REP2 | 66 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.XMLDefaultHandlerImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.XMLDefaultHandlerImpl.getRootNode() may expose internal representation by returning XMLDefaultHandlerImpl.iRootNode | MALICIOUS_CODE | EI_EXPOSE_REP | 272 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractMethodCallNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractMethodCallNode.getCIMArguments() may expose internal representation by returning AbstractMethodCallNode.iArgA | MALICIOUS_CODE | EI_EXPOSE_REP | 162 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractMethodCallNode.getCIMObjectPath() may expose internal representation by returning AbstractMethodCallNode.iPath | MALICIOUS_CODE | EI_EXPOSE_REP | 151 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractParameterNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractParameterNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 89 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractPropertyNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractPropertyNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 108 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.AbstractPropertyNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 111 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CIMNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CIMNode.addChild(Node) may expose internal representation by storing an externally mutable object into CIMNode.iContent | MALICIOUS_CODE | EI_EXPOSE_REP2 | 76 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CIMNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 108 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CIMNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 107 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ClassNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ClassNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 118 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ClassPathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ClassPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ClassPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 100 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CorrelatorNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CorrelatorNode.getType() may expose internal representation by returning CorrelatorNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 113 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.CorrelatorNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 94 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ErrorNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ErrorNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 111 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodCallNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodCallNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodResponseNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodResponseNode.addChild(Node) may expose internal representation by storing an externally mutable object into ExpMethodResponseNode.iErrorNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 77 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodResponseNode.addChild(Node) may expose internal representation by storing an externally mutable object into ExpMethodResponseNode.iRetValNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 78 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 101 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpMethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 101 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpParamValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpParamValueNode.addChild(Node) may expose internal representation by storing an externally mutable object into ExpParamValueNode.iChildNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 74 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ExpParamValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodCallNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodCallNode.testSpecChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 69 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodCallNode.testSpecChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 66 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.addChild(Node) may expose internal representation by storing an externally mutable object into IMethodResponseNode.iErrorNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 98 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.addChild(Node) may expose internal representation by storing an externally mutable object into IMethodResponseNode.iRetValNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 96 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.childParsed(Node) may expose internal representation by storing an externally mutable object into IMethodResponseNode.iErrorNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 157 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.childParsed(Node) may expose internal representation by storing an externally mutable object into IMethodResponseNode.iRetValNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 160 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 125 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 134 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IMethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 142 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IParamValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IParamValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 114 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IReturnValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IReturnValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 119 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.IReturnValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 128 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstanceNameNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstanceNameNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 107 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstanceNameNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 106 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstanceNameNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 110 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstanceNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstanceNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 112 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstancePathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstancePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 101 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.InstancePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.KeyBindingNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.KeyBindingNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.KeyBindingNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.KeyValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.KeyValueNode.setSInt64(String) invokes inefficient new Long(String) constructor; use Long.valueOf(String) instead | PERFORMANCE | DM_NUMBER_CTOR | 177 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.KeyValueNode.getType() may expose internal representation by returning KeyValueNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 141 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalClassPathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalClassPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 105 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalClassPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 102 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalInstancePathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalInstancePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 110 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalInstancePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 107 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalNameSpacePathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalNameSpacePathNode.getCIMObjectPath() may expose internal representation by returning LocalNameSpacePathNode.iNameSpacePath | MALICIOUS_CODE | EI_EXPOSE_REP | 137 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.LocalNameSpacePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 100 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MessageNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MessageNode.getAbstractMessageNode() may expose internal representation by returning MessageNode.iAbstractMsgNode | MALICIOUS_CODE | EI_EXPOSE_REP | 133 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MessageNode.addChild(Node) may expose internal representation by storing an externally mutable object into MessageNode.iAbstractMsgNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 77 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MessageNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 109 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodCallNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodCallNode.testSpecChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 66 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodCallNode.testSpecChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 66 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodCallNode.testSpecChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 69 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodResponseNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodResponseNode.getCIMError() may expose internal representation by returning MethodResponseNode.iError | MALICIOUS_CODE | EI_EXPOSE_REP | 165 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 120 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 137 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MethodResponseNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 129 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiExpReqNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiExpReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 94 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiExpRspNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiExpRspNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 95 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiReqNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 94 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiRspNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.MultiRspNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 95 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.NameSpacePathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.NameSpacePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 97 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.NameSpacePathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 100 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ObjectPathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ObjectPathNode.getCIMObjectPath() may expose internal representation by returning ObjectPathNode.iObjPath | MALICIOUS_CODE | EI_EXPOSE_REP | 111 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ObjectPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 94 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ObjectPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 94 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParamValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParamValueNode.getType() may expose internal representation by returning ParamValueNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 159 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParamValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 113 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParamValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 125 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParamValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 125 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterArrayNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterArrayNode.getType() may expose internal representation by returning ParameterArrayNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 89 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterNode.getType() may expose internal representation by returning ParameterNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 85 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterRefArrayNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterRefArrayNode.getType() may expose internal representation by returning ParameterRefArrayNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 86 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterReferenceNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ParameterReferenceNode.getType() may expose internal representation by returning ParameterReferenceNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 80 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.PropertyArrayNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.PropertyArrayNode.getType() may expose internal representation by returning PropertyArrayNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 119 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.PropertyNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.PropertyNode.getType() may expose internal representation by returning PropertyNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 132 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualiDeclNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualiDeclNode.getType() may expose internal representation by returning QualiDeclNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 112 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualiDeclNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 152 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualiDeclNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 148 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualiDeclNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 148 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualifierNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualifierNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 124 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.QualifierNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 124 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ReturnValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ReturnValueNode.getType() may expose internal representation by returning ReturnValueNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 138 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ReturnValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ReturnValueNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpReqNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpReqNode.addChild(Node) may expose internal representation by storing an externally mutable object into SimpleExpReqNode.iMethodCallNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 69 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 95 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpRspNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpRspNode.addChild(Node) may expose internal representation by storing an externally mutable object into SimpleExpRspNode.iExpMethodRspNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 75 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleExpRspNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 100 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleReqNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleReqNode.getAbstractMethodCallNode() may expose internal representation by returning SimpleReqNode.iMethodCallNode | MALICIOUS_CODE | EI_EXPOSE_REP | 119 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleReqNode.addChild(Node) may expose internal representation by storing an externally mutable object into SimpleReqNode.iMethodCallNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 71 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 100 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleReqNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 100 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleRspNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleRspNode.addChild(Node) may expose internal representation by storing an externally mutable object into SimpleRspNode.iChildNode | MALICIOUS_CODE | EI_EXPOSE_REP2 | 78 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleRspNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.SimpleRspNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueArrayNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueArrayNode.getType() may expose internal representation by returning ValueArrayNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 142 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueArrayNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 107 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueArrayNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 107 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueInstanceWithPathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueInstanceWithPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 104 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueInstanceWithPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 101 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueNamedInstanceNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueNamedInstanceNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 115 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueNamedInstanceNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 112 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueNode.getType() may expose internal representation by returning ValueNode.iType | MALICIOUS_CODE | EI_EXPOSE_REP | 131 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 96 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 96 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithLocalPathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithLocalPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 107 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithLocalPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 115 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithLocalPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 103 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithLocalPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 111 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithPathNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 105 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 102 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 111 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueObjectWithPathNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 108 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueRefArrayNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueRefArrayNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueRefArrayNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 98 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueReferenceNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueReferenceNode.getCIMObjectPath() may expose internal representation by returning ValueReferenceNode.iCIMObjPath | MALICIOUS_CODE | EI_EXPOSE_REP | 144 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueReferenceNode.getValue() may expose internal representation by returning ValueReferenceNode.iCIMObjPath | MALICIOUS_CODE | EI_EXPOSE_REP | 136 | Medium |
| Comparison of String parameter using == or != in org.sentrysoftware.wbem.sblim.cimclient.internal.cimxml.sax.node.ValueReferenceNode.testChild(String) | BAD_PRACTICE | ES_COMPARING_PARAMETER_STRING_WITH_EQ | 116 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.DiscovererSLP
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.DiscovererSLP.getScopes() may expose internal representation by returning DiscovererSLP.iScopes | MALICIOUS_CODE | EI_EXPOSE_REP | 124 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.DiscovererSLP.setScopes(Vector) may expose internal representation by storing an externally mutable object into DiscovererSLP.iScopes | MALICIOUS_CODE | EI_EXPOSE_REP2 | 134 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.WBEMServiceAdvertisementSLP
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.WBEMServiceAdvertisementSLP at new org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.WBEMServiceAdvertisementSLP(String, ServiceURL, List) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 98 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.discovery.slp.WBEMServiceAdvertisementSLP(String, ServiceURL, List) may expose internal representation by storing an externally mutable object into WBEMServiceAdvertisementSLP.iServiceUrl | MALICIOUS_CODE | EI_EXPOSE_REP2 | 101 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.BASE64Encoder
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.http.BASE64Encoder.encode(byte[]): new String(byte[]) | I18N | DM_DEFAULT_ENCODING | 137 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.Challenge
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.Challenge.parseChallenge(String) invokes inefficient new String(String) constructor | PERFORMANCE | DM_STRING_CTOR | 199 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.Challenge.getParams() may expose internal representation by returning Challenge.iParams | MALICIOUS_CODE | EI_EXPOSE_REP | 71 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.getOutputStream() may expose internal representation by returning HttpClient.iServerOutput | MALICIOUS_CODE | EI_EXPOSE_REP | 538 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient(URI, HttpClientPool, AuthorizationHandler) may expose internal representation by storing an externally mutable object into HttpClient.iAuth_handler | MALICIOUS_CODE | EI_EXPOSE_REP2 | 411 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient(URI, HttpClientPool, AuthorizationHandler) may expose internal representation by storing an externally mutable object into HttpClient.iHttpClientPool | MALICIOUS_CODE | EI_EXPOSE_REP2 | 412 | Medium |
| The parameter prevAuthInfo to org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.getAuthentication(boolean, AuthorizationInfo, String) is dead upon entry but overwritten | CORRECTNESS | IP_PARAMETER_IS_DEAD_BUT_OVERWRITTEN | 1053 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iIStream; locked 75% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1235 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iKeepAlive; locked 88% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1112 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iOStream; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1237 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iPreviousResponseTime; locked 87% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1178 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iReset; locked 75% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 970 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iResponse; locked 78% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 954 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iResponseHeaders; locked 93% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 968 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iServerInput; locked 65% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1085 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iServerOutput; locked 90% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 427 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iUseHttp11; locked 66% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1033 | Medium |
| Unwritten field: org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClient.iPrevProxy | CORRECTNESS | UWF_UNWRITTEN_FIELD | 691 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientMethod
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientMethod at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientMethod(InputStream) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 110 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientPool
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientPool.getConfigurationContext() may expose internal representation by returning HttpClientPool.iConfiguration | MALICIOUS_CODE | EI_EXPOSE_REP | 143 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientPool.getUpdatedCipherSuites(String[], String) may expose internal representation by returning HttpClientPool.iEnabledCipherSuites | MALICIOUS_CODE | EI_EXPOSE_REP | 330 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpClientPool(WBEMConfiguration) may expose internal representation by storing an externally mutable object into HttpClientPool.iConfiguration | MALICIOUS_CODE | EI_EXPOSE_REP2 | 110 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpHeader
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpHeader at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpHeader(InputStream) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 135 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpHeader at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpHeader(InputStream, long) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 117 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpHeader.examineTrailer(String) invokes inefficient new String(String) constructor | PERFORMANCE | DM_STRING_CTOR | 515 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerConnection
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerConnection at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerConnection(HttpConnectionHandler, String, int, boolean, WBEMConfiguration) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 132 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerConnection(HttpConnectionHandler, String, int, boolean, WBEMConfiguration) may expose internal representation by storing an externally mutable object into HttpServerConnection.iHandler | MALICIOUS_CODE | EI_EXPOSE_REP2 | 131 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerMethod
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerMethod at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerMethod(InputStream) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 106 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerWorker
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerWorker(HttpConnectionHandler, Socket) may expose internal representation by storing an externally mutable object into HttpServerWorker.iHandler | MALICIOUS_CODE | EI_EXPOSE_REP2 | 73 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpServerWorker(HttpConnectionHandler, Socket) may expose internal representation by storing an externally mutable object into HttpServerWorker.iSocket | MALICIOUS_CODE | EI_EXPOSE_REP2 | 74 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpUrlConnection
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpUrlConnection.getHttpClient() may expose internal representation by returning HttpUrlConnection.iHttpClient | MALICIOUS_CODE | EI_EXPOSE_REP | 208 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpUrlConnection(URI, HttpClientPool, AuthorizationHandler) may expose internal representation by storing an externally mutable object into HttpUrlConnection.iAuthHandler | MALICIOUS_CODE | EI_EXPOSE_REP2 | 92 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.HttpUrlConnection(URI, HttpClientPool, AuthorizationHandler) may expose internal representation by storing an externally mutable object into HttpUrlConnection.iHttpClientPool | MALICIOUS_CODE | EI_EXPOSE_REP2 | 91 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageReader
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageReader at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageReader(InputStream, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 93 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageReader.getHeader() may expose internal representation by returning MessageReader.iHeader | MALICIOUS_CODE | EI_EXPOSE_REP | 144 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageReader.getMethod() may expose internal representation by returning MessageReader.iMethod | MALICIOUS_CODE | EI_EXPOSE_REP | 153 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter.getHeader() may expose internal representation by returning MessageWriter.iHeader | MALICIOUS_CODE | EI_EXPOSE_REP | 141 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter.getMethod() may expose internal representation by returning MessageWriter.iMethod | MALICIOUS_CODE | EI_EXPOSE_REP | 150 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter.getOutputStream() may expose internal representation by returning MessageWriter.iClientOS | MALICIOUS_CODE | EI_EXPOSE_REP | 159 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter.setHeader(HttpHeader) may expose internal representation by storing an externally mutable object into MessageWriter.iHeader | MALICIOUS_CODE | EI_EXPOSE_REP2 | 122 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter.setMethod(HttpServerMethod) may expose internal representation by storing an externally mutable object into MessageWriter.iMethod | MALICIOUS_CODE | EI_EXPOSE_REP2 | 132 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.MessageWriter.setTrailer(HttpHeader) may expose internal representation by storing an externally mutable object into MessageWriter.iTrailer | MALICIOUS_CODE | EI_EXPOSE_REP2 | 199 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.PegasusLocalAuthInfo
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.http.PegasusLocalAuthInfo.toString(): new java.io.FileReader(File) | I18N | DM_DEFAULT_ENCODING | 125 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.WwwAuthInfo
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.http.WwwAuthInfo.getBytes(String, String): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 193 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ASCIIPrintStream
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ASCIIPrintStream at new org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ASCIIPrintStream(boolean, OutputStream) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 70 | Medium |
| Found reliance on default encoding in new org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ASCIIPrintStream(OutputStream): new java.io.OutputStreamWriter(OutputStream) | I18N | DM_DEFAULT_ENCODING | 82 | High |
| Found reliance on default encoding in new org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ASCIIPrintStream(OutputStream, boolean): new java.io.OutputStreamWriter(OutputStream) | I18N | DM_DEFAULT_ENCODING | 96 | High |
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ASCIIPrintStream.checkError() may expose internal representation by returning ASCIIPrintStream.iTrouble | MALICIOUS_CODE | EI_EXPOSE_REP | 391 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ChunkedInputStream
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.ChunkedInputStream.getTrailers() may expose internal representation by returning ChunkedInputStream.iTrailers | MALICIOUS_CODE | EI_EXPOSE_REP | 188 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.DebugInputStream
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.DebugInputStream.writeBuffer(String): new String(byte[], int, int) | I18N | DM_DEFAULT_ENCODING | 129 | High |
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.DebugInputStream.writeBuffer(String): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 134 | High |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.DebugInputStream(InputStream, OutputStream, String) may expose internal representation by storing an externally mutable object into DebugInputStream.iStream | MALICIOUS_CODE | EI_EXPOSE_REP2 | 99 | Medium |
| Redundant nullcheck of b, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.DebugInputStream.read(byte[], int, int) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 166 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.KeepAliveInputStream
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.KeepAliveInputStream(InputStream, HttpClient) may expose internal representation by storing an externally mutable object into KeepAliveInputStream.iClient | MALICIOUS_CODE | EI_EXPOSE_REP2 | 72 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.TrailerException
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.TrailerException.getWBEMException() may expose internal representation by returning TrailerException.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP | 78 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.http.io.TrailerException(WBEMException) may expose internal representation by storing an externally mutable object into TrailerException.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP2 | 69 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.getCIMXMLTraceListeners() may expose internal representation by returning LogAndTraceBroker.iCIMXMLTraceListeners | MALICIOUS_CODE | EI_EXPOSE_REP | 616 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.getLogListeners() may expose internal representation by returning LogAndTraceBroker.iLogListeners | MALICIOUS_CODE | EI_EXPOSE_REP | 495 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.getTraceListeners() may expose internal representation by returning LogAndTraceBroker.iTraceListeners | MALICIOUS_CODE | EI_EXPOSE_REP | 571 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.getXmlTraceStream() may expose internal representation by returning LogAndTraceBroker.iXmlTraceStream | MALICIOUS_CODE | EI_EXPOSE_REP | 767 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.setXmlTraceStream(OutputStream) may expose internal representation by storing an externally mutable object into LogAndTraceBroker.iXmlTraceStream | MALICIOUS_CODE | EI_EXPOSE_REP2 | 779 | Medium |
| LogAndTraceBroker.java:[line 189] is set to null inside finalize method in org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker | BAD_PRACTICE | FI_FINALIZER_NULLS_FIELDS | 189 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iInternalListenerLogConsole; locked 46% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 924 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iInternalListenerLogFile; locked 46% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 921 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iInternalListenerTraceConsole; locked 46% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 879 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iInternalListenerTraceFile; locked 46% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 876 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iNumExternalLogListeners; locked 83% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 915 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iNumExternalTraceListeners; locked 83% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 870 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iNumInternalLogListeners; locked 87% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 919 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.iNumInternalTraceListeners; locked 87% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 874 | Medium |
| Public static org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.getBroker() may expose internal representation by returning LogAndTraceBroker.cBroker | MALICIOUS_CODE | MS_EXPOSE_REP | 109 | Medium |
| Exception is caught when Exception is not thrown in org.sentrysoftware.wbem.sblim.cimclient.internal.logging.LogAndTraceBroker.registerInternalListeners() | STYLE | REC_CATCH_EXCEPTION | 251 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.pullparser.XMLPullParser
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.pullparser.XMLPullParser.getElementNames() may expose internal representation by returning XMLPullParser.iElementNames | MALICIOUS_CODE | EI_EXPOSE_REP | 612 | Medium |
| Unread field: org.sentrysoftware.wbem.sblim.cimclient.internal.pullparser.XMLPullParser.iSeenEpilog | PERFORMANCE | URF_UNREAD_FIELD | 779 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.uri.KeyValuePair
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Redundant nullcheck of value, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.uri.KeyValuePair.parse(boolean, URIString) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 76 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.uri.Test
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Redundant nullcheck of uri, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.uri.Test.main(String[]) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 143 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URI
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URI at new org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URI(String, String, KeyValuePairs, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 282 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URI.getKeyValuePairs() may expose internal representation by returning URI.iKeyValuePairs | MALICIOUS_CODE | EI_EXPOSE_REP | 225 | Medium |
| Redundant nullcheck of keyValuePairs, which is known to be non-null in org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URI.parseRef(URIString, boolean) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE | 153 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URIString
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URIString at new org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URIString(char[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 77 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URIString at new org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URIString(char[], int, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 62 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.uri.URIString(char[], int, int) may expose internal representation by storing an externally mutable object into URIString.iCA | MALICIOUS_CODE | EI_EXPOSE_REP2 | 66 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.util.ThreadPool
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.util.ThreadPool.iThreadPool; locked 90% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 296 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration at new org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration(Properties) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 338 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration.getDomainProperties() may expose internal representation by returning WBEMConfiguration.iDomainProperties | MALICIOUS_CODE | EI_EXPOSE_REP | 358 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration(Properties) may expose internal representation by storing an externally mutable object into WBEMConfiguration.iDomainProperties | MALICIOUS_CODE | EI_EXPOSE_REP2 | 340 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration.setDomainProperties(Properties) may expose internal representation by storing an externally mutable object into WBEMConfiguration.iDomainProperties | MALICIOUS_CODE | EI_EXPOSE_REP2 | 370 | Medium |
| Public static org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration.getConfigurationLoadException() may expose internal representation by returning WBEMConfiguration.cLoadException | MALICIOUS_CODE | MS_EXPOSE_REP | 295 | Medium |
| Public static org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfiguration.getGlobalConfiguration() may expose internal representation by returning WBEMConfiguration.cConfiguration | MALICIOUS_CODE | MS_EXPOSE_REP | 286 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfigurationDefaults
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConfigurationDefaults.CONFIG_URL should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT | 85 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConstants
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.util.WBEMConstants.DEFAULT_LOCALES is a mutable array | MALICIOUS_CODE | MS_MUTABLE_ARRAY | 90 | High |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CIMError
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Possible bad parsing of shift operation in org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CIMError.hashCode() | CORRECTNESS | BSHIFT_WRONG_ADD_PRIORITY | 195 | High |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CIMError.getCIMInstances() may expose internal representation by returning CIMError.iInstances | MALICIOUS_CODE | EI_EXPOSE_REP | 137 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CIMError(int, String, CIMInstance[]) may expose internal representation by storing an externally mutable object into CIMError.iInstances | MALICIOUS_CODE | EI_EXPOSE_REP2 | 110 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM(InputStreamReader, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 106 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM(InputSource, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 121 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM.getParamValues() may expose internal representation by returning CloseableIteratorDOM.outParamValues | MALICIOUS_CODE | EI_EXPOSE_REP | 161 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorDOM.getWBEMException() may expose internal representation by returning CloseableIteratorDOM.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP | 151 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorGeneric
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorGeneric.getWBEMException() may expose internal representation by returning CloseableIteratorGeneric.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP | 95 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorGeneric(Iterator, WBEMException) may expose internal representation by storing an externally mutable object into CloseableIteratorGeneric.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP2 | 70 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorGeneric(Iterator, WBEMException) may expose internal representation by storing an externally mutable object into CloseableIteratorGeneric.iterator | MALICIOUS_CODE | EI_EXPOSE_REP2 | 69 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL(InputStreamReader, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 101 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL.getCIMArguments() may expose internal representation by returning CloseableIteratorPULL.iCIMArgAL | MALICIOUS_CODE | EI_EXPOSE_REP | 223 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL.getWBEMException() may expose internal representation by returning CloseableIteratorPULL.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP | 150 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL(XMLPullParser, XMLDefaultHandlerImpl) may expose internal representation by storing an externally mutable object into CloseableIteratorPULL.iHandler | MALICIOUS_CODE | EI_EXPOSE_REP2 | 112 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL(XMLPullParser, XMLDefaultHandlerImpl) may expose internal representation by storing an externally mutable object into CloseableIteratorPULL.iParser | MALICIOUS_CODE | EI_EXPOSE_REP2 | 111 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorPULL.next() cannot throw NoSuchElementException | BAD_PRACTICE | IT_NO_SUCH_ELEMENT | 140-142 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX(InputStreamReader, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 97 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX(CIMNode) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 118 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX.getCIMArguments() may expose internal representation by returning CloseableIteratorSAX.iCIMArgAL | MALICIOUS_CODE | EI_EXPOSE_REP | 172 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.CloseableIteratorSAX.getWBEMException() may expose internal representation by returning CloseableIteratorSAX.iWBEMException | MALICIOUS_CODE | EI_EXPOSE_REP | 160 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponseDOM
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponseDOM at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponseDOM(InputStreamReader, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 82 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponsePULL
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponsePULL at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponsePULL(InputStreamReader, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 91 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponseSAX
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponseSAX at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.EnumerateResponseSAX(InputStreamReader, CIMObjectPath) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 83 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.WBEMClientCIMXML
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.WBEMClientCIMXML.transmitRequestWorker(boolean, URI, HttpClientPool, String, HttpHeader, Document): java.io.ByteArrayOutputStream.toString() | I18N | DM_DEFAULT_ENCODING | 1765 | High |
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.WBEMClientCIMXML.transmitRequestWorker(boolean, URI, HttpClientPool, String, HttpHeader, Document): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 1765 | High |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.WBEMClientCIMXML.iAuthorizationHandler; locked 66% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 2004 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.WBEMClientCIMXML.iHttpClientPool; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1709 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.WBEMClientCIMXML.iUri; locked 75% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 1709 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEvent
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEvent.getInetAddress() may expose internal representation by returning CIMEvent.iInetAddress | MALICIOUS_CODE | EI_EXPOSE_REP | 113 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEvent(CIMInstance, String, InetAddress) may expose internal representation by storing an externally mutable object into CIMEvent.iInetAddress | MALICIOUS_CODE | EI_EXPOSE_REP2 | 102 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEventDispatcher
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEventDispatcher at new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEventDispatcher(EventListener, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 106 | Medium |
| Inconsistent synchronization of org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMEventDispatcher.iAlive; locked 75% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC | 186 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Boxing/unboxing to parse a primitive new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler(CIMEventDispatcher, WBEMConfiguration) | PERFORMANCE | DM_BOXED_PRIMITIVE_FOR_PARSING | 369 | High |
| Boxing/unboxing to parse a primitive org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler.deliverIndication(CIMInstance, String, InetAddress) | PERFORMANCE | DM_BOXED_PRIMITIVE_FOR_PARSING | 658 | High |
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler.buildResponse(CIMClientXML_HelperImpl, MessageWriter, CIMRequest, CIMError): java.io.ByteArrayOutputStream.toString() | I18N | DM_DEFAULT_ENCODING | 791 | High |
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler.buildResponse(CIMClientXML_HelperImpl, MessageWriter, CIMRequest, CIMError): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 791 | High |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler(CIMEventDispatcher, WBEMConfiguration) may expose internal representation by storing an externally mutable object into CIMIndicationHandler.iDispatcher | MALICIOUS_CODE | EI_EXPOSE_REP2 | 352 | Medium |
| Exception is caught when Exception is not thrown in org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler.dispatchIndications(MessageReader, InetAddress, String, CIMRequest) | STYLE | REC_CATCH_EXCEPTION | 767 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler(CIMEventDispatcher, WBEMConfiguration) invokes org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$DataManager.start() | MT_CORRECTNESS | SC_START_IN_CTOR | 381 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$DataManager
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$DataManager be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC | 128-194 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$IndicationServer
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$IndicationServer be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC | 217-235 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$ServerTableEntry
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.CIMIndicationHandler$ServerTableEntry be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC | 284-308 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.ReliableIndicationHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.ReliableIndicationHandler(CIMEventDispatcher, long) may expose internal representation by storing an externally mutable object into ReliableIndicationHandler.iDispatcher | MALICIOUS_CODE | EI_EXPOSE_REP2 | 197 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.ReliableIndicationHandler$CacheEntry
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.ReliableIndicationHandler$CacheEntry be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC | 146-161 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.ReliableIndicationHandler$ReliableIndication
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.indications.ReliableIndicationHandler$ReliableIndication be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC | 102-127 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorNamesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorNamesOp(CIMObjectPath, String, String, String, String) may expose internal representation by storing an externally mutable object into CIMAssociatorNamesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 80 | Medium |
| Unwritten public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorNamesOp.iResultRole | STYLE | UWF_UNWRITTEN_PUBLIC_OR_PROTECTED_FIELD | 110 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorsOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorsOp.getPropertyList() may expose internal representation by returning CIMAssociatorsOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP | 130 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorsOp(CIMObjectPath, String, String, String, String, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMAssociatorsOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 88 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorsOp(CIMObjectPath, String, String, String, String, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMAssociatorsOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 94 | Medium |
| Unwritten public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMAssociatorsOp.iResultRole | STYLE | UWF_UNWRITTEN_PUBLIC_OR_PROTECTED_FIELD | 148 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMCreateClassOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMCreateClassOp(CIMObjectPath, CIMClass) may expose internal representation by storing an externally mutable object into CIMCreateClassOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 68 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMCreateInstanceOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMCreateInstanceOp(CIMObjectPath, CIMInstance) may expose internal representation by storing an externally mutable object into CIMCreateInstanceOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 68 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMCreateQualifierTypeOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMCreateQualifierTypeOp(CIMObjectPath, CIMQualifierType) may expose internal representation by storing an externally mutable object into CIMCreateQualifierTypeOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 69 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMDeleteClassOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMDeleteClassOp(CIMObjectPath) may expose internal representation by storing an externally mutable object into CIMDeleteClassOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 64 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMDeleteInstanceOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMDeleteInstanceOp(CIMObjectPath) may expose internal representation by storing an externally mutable object into CIMDeleteInstanceOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 64 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMDeleteQualifierTypeOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMDeleteQualifierTypeOp(CIMObjectPath) may expose internal representation by storing an externally mutable object into CIMDeleteQualifierTypeOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 64 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumClassNamesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumClassNamesOp(CIMObjectPath, boolean) may expose internal representation by storing an externally mutable object into CIMEnumClassNamesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 67 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumClassesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumClassesOp(CIMObjectPath, boolean, boolean, boolean, boolean) may expose internal representation by storing an externally mutable object into CIMEnumClassesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 77 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumInstanceNamesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumInstanceNamesOp(CIMObjectPath) may expose internal representation by storing an externally mutable object into CIMEnumInstanceNamesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 64 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumInstancesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumInstancesOp.getPropertyList() may expose internal representation by returning CIMEnumInstancesOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP | 130 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumInstancesOp(CIMObjectPath, boolean, boolean, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMEnumInstancesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 80 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumInstancesOp(CIMObjectPath, boolean, boolean, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMEnumInstancesOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 85 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumQualifierTypesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMEnumQualifierTypesOp(CIMObjectPath) may expose internal representation by storing an externally mutable object into CIMEnumQualifierTypesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 64 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMExecQueryOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMExecQueryOp(CIMObjectPath, String, String) may expose internal representation by storing an externally mutable object into CIMExecQueryOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 70 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetClassOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetClassOp.getPropertyList() may expose internal representation by returning CIMGetClassOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP | 118 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetClassOp(CIMObjectPath, boolean, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMGetClassOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 79 | Medium |
| Unwritten public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetClassOp.iPropertyList | STYLE | UWF_UNWRITTEN_PUBLIC_OR_PROTECTED_FIELD | 118 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetInstanceOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetInstanceOp.getPropertyList() may expose internal representation by returning CIMGetInstanceOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP | 118 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetInstanceOp(CIMObjectPath, boolean, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMGetInstanceOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 78 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetInstanceOp(CIMObjectPath, boolean, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMGetInstanceOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 82 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetPropertyOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetPropertyOp(CIMObjectPath, String) may expose internal representation by storing an externally mutable object into CIMGetPropertyOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 67 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetQualifierTypeOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMGetQualifierTypeOp(CIMObjectPath, String) may expose internal representation by storing an externally mutable object into CIMGetQualifierTypeOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 67 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMInvokeMethodOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMInvokeMethodOp.getInParams() may expose internal representation by returning CIMInvokeMethodOp.iInParams | MALICIOUS_CODE | EI_EXPOSE_REP | 88 | Medium |
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMInvokeMethodOp.getOutParams() may expose internal representation by returning CIMInvokeMethodOp.iOutParams | MALICIOUS_CODE | EI_EXPOSE_REP | 106 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMInvokeMethodOp(CIMObjectPath, String, CIMArgument[], CIMArgument[]) may expose internal representation by storing an externally mutable object into CIMInvokeMethodOp.iInParams | MALICIOUS_CODE | EI_EXPOSE_REP2 | 78 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMInvokeMethodOp(CIMObjectPath, String, CIMArgument[], CIMArgument[]) may expose internal representation by storing an externally mutable object into CIMInvokeMethodOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 76 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMInvokeMethodOp(CIMObjectPath, String, CIMArgument[], CIMArgument[]) may expose internal representation by storing an externally mutable object into CIMInvokeMethodOp.iOutParams | MALICIOUS_CODE | EI_EXPOSE_REP2 | 79 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMOperation
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMOperation.getObjectName() may expose internal representation by returning CIMOperation.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP | 72 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMReferenceNamesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMReferenceNamesOp(CIMObjectPath, String, String) may expose internal representation by storing an externally mutable object into CIMReferenceNamesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 70 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMReferencesOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMReferencesOp.getPropertyList() may expose internal representation by returning CIMReferencesOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP | 111 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMReferencesOp(CIMObjectPath, String, String, boolean, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMReferencesOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 80 | Medium |
| Unwritten public or protected field: org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMReferencesOp.iPropertyList | STYLE | UWF_UNWRITTEN_PUBLIC_OR_PROTECTED_FIELD | 111 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetClassOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetClassOp(CIMObjectPath, CIMClass) may expose internal representation by storing an externally mutable object into CIMSetClassOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 68 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetInstanceOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetInstanceOp.getPropertyList() may expose internal representation by returning CIMSetInstanceOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP | 105 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetInstanceOp(CIMObjectPath, CIMInstance, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMSetInstanceOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 75 | Medium |
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetInstanceOp(CIMObjectPath, CIMInstance, boolean, String[]) may expose internal representation by storing an externally mutable object into CIMSetInstanceOp.iPropertyList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 78 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetPropertyOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetPropertyOp(CIMObjectPath, String, Object) may expose internal representation by storing an externally mutable object into CIMSetPropertyOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 70 | Medium |
org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetQualifierTypeOp
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.cimclient.internal.wbem.operations.CIMSetQualifierTypeOp(CIMObjectPath, CIMQualifierType) may expose internal representation by storing an externally mutable object into CIMSetQualifierTypeOp.iObjectName | MALICIOUS_CODE | EI_EXPOSE_REP2 | 69 | Medium |
org.sentrysoftware.wbem.sblim.slp.ServiceLocationAttribute
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.ServiceLocationAttribute at new org.sentrysoftware.wbem.sblim.slp.ServiceLocationAttribute(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 115 | Medium |
| org.sentrysoftware.wbem.sblim.slp.ServiceLocationAttribute.getValues() may expose internal representation by returning ServiceLocationAttribute.iValues | MALICIOUS_CODE | EI_EXPOSE_REP | 180 | Medium |
org.sentrysoftware.wbem.sblim.slp.ServiceURL
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.ServiceURL at new org.sentrysoftware.wbem.sblim.slp.ServiceURL(String, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 118 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getBroadcastAddress() may expose internal representation by returning SLPConfig.cBroadcastAddress | MALICIOUS_CODE | MS_EXPOSE_REP | 122 | Medium |
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getGlobalCfg() may expose internal representation by returning SLPConfig.cInstance | MALICIOUS_CODE | MS_EXPOSE_REP | 134 | Medium |
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getLoopbackV4() may expose internal representation by returning SLPConfig.cLoopBackV4 | MALICIOUS_CODE | MS_EXPOSE_REP | 143 | Medium |
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getLoopbackV6() may expose internal representation by returning SLPConfig.cLoopBackV6 | MALICIOUS_CODE | MS_EXPOSE_REP | 152 | Medium |
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getMulticastAddress() may expose internal representation by returning SLPConfig.cMulticastAddress | MALICIOUS_CODE | MS_EXPOSE_REP | 161 | Medium |
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getSRVLOC_DA_MulticastAddress() may expose internal representation by returning SLPConfig.cSRVLOC_DA_MulticastAddress | MALICIOUS_CODE | MS_EXPOSE_REP | 179 | Medium |
| Public static org.sentrysoftware.wbem.sblim.slp.internal.SLPConfig.getSRVLOC_MulticastAddress() may expose internal representation by returning SLPConfig.cSRVLOC_MulticastAddress | MALICIOUS_CODE | MS_EXPOSE_REP | 170 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.SLPDefaults
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.slp.internal.SLPDefaults.CONF_URLS should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT | 80 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.SLPDefaults.DATAGRAM_TIMEOUTS should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT | 97 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.SLPDefaults.DA_DISCOVERY_TIMEOUTS should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT | 87 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.SLPDefaults.MULTICAST_TIMEOUTS should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT | 167 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.TRC
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in org.sentrysoftware.wbem.sblim.slp.internal.TRC.setOutput(OutputStream): new java.io.PrintStream(OutputStream) | I18N | DM_DEFAULT_ENCODING | 92 | High |
| org.sentrysoftware.wbem.sblim.slp.internal.TRC.<static initializer for TRC>() allocates an object, only to get the class object | PERFORMANCE | DM_NEW_FOR_GETCLASS | 75 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.TRC.setOutput(PrintStream) may expose internal static state by storing a mutable object into a static field org.sentrysoftware.wbem.sblim.slp.internal.TRC.cOut | MALICIOUS_CODE | EI_EXPOSE_STATIC_REP2 | 101 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.AttributeReply
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.AttributeReply(int, List) may expose internal representation by storing an externally mutable object into AttributeReply.iAttrList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 103 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.AttributeReply(String, int, List) may expose internal representation by storing an externally mutable object into AttributeReply.iAttrList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 116 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.AttributeReply(MsgHeader, int, List) may expose internal representation by storing an externally mutable object into AttributeReply.iAttrList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 130 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.DADescriptor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.DADescriptor(String, TreeSet, List) may expose internal representation by storing an externally mutable object into DADescriptor.iAttributes | MALICIOUS_CODE | EI_EXPOSE_REP2 | 83 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.DADescriptor(String, TreeSet, List) may expose internal representation by storing an externally mutable object into DADescriptor.iScopeSet | MALICIOUS_CODE | EI_EXPOSE_REP2 | 82 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.MsgHeader
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Check for sign of bitwise operation in org.sentrysoftware.wbem.sblim.slp.internal.msg.MsgHeader.parse(SLPInputStream) | BAD_PRACTICE | BIT_SIGNED_CHECK | 167 | Medium |
| Check for sign of bitwise operation in org.sentrysoftware.wbem.sblim.slp.internal.msg.MsgHeader.parse(SLPInputStream) | BAD_PRACTICE | BIT_SIGNED_CHECK | 167 | Medium |
| Check for sign of bitwise operation in org.sentrysoftware.wbem.sblim.slp.internal.msg.MsgHeader.parse(SLPInputStream) | BAD_PRACTICE | BIT_SIGNED_CHECK | 167 | Medium |
| Random object created and used only once in org.sentrysoftware.wbem.sblim.slp.internal.msg.MsgHeader.getNewXID() | BAD_PRACTICE | DMI_RANDOM_USED_ONLY_ONCE | 332 | High |
org.sentrysoftware.wbem.sblim.slp.internal.msg.RequestMessage
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.slp.internal.msg.RequestMessage.getScopeList() may expose internal representation by returning RequestMessage.iScopeList | MALICIOUS_CODE | EI_EXPOSE_REP | 147 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.RequestMessage$SkipResponders
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should org.sentrysoftware.wbem.sblim.slp.internal.msg.RequestMessage$SkipResponders be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC | 200 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPInputStream
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPInputStream at new org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPInputStream(Socket) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 99 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPInputStream$AttrListParser
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPInputStream$AttrListParser at new org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPInputStream$AttrListParser(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 431 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPMessage
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPMessage.getHeader() may expose internal representation by returning SLPMessage.iHeader | MALICIOUS_CODE | EI_EXPOSE_REP | 97 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.SLPMessage(MsgHeader) may expose internal representation by storing an externally mutable object into SLPMessage.iHeader | MALICIOUS_CODE | EI_EXPOSE_REP2 | 88 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceDeregistration
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceDeregistration.getServiceURL() may expose internal representation by returning ServiceDeregistration.iURL | MALICIOUS_CODE | EI_EXPOSE_REP | 149 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceRegistration
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceRegistration.getAttributeList() may expose internal representation by returning ServiceRegistration.iAttrList | MALICIOUS_CODE | EI_EXPOSE_REP | 175 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceRegistration.getScopeList() may expose internal representation by returning ServiceRegistration.iScopeList | MALICIOUS_CODE | EI_EXPOSE_REP | 166 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceRegistration.getServiceURL() may expose internal representation by returning ServiceRegistration.iServURL | MALICIOUS_CODE | EI_EXPOSE_REP | 157 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply.getURLEntries() may expose internal representation by returning ServiceReply.iURLEntries | MALICIOUS_CODE | EI_EXPOSE_REP | 165 | Medium |
| org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply.getURLExceptions() may expose internal representation by returning ServiceReply.iURLExceptions | MALICIOUS_CODE | EI_EXPOSE_REP | 174 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply(int, List) may expose internal representation by storing an externally mutable object into ServiceReply.iURLEntries | MALICIOUS_CODE | EI_EXPOSE_REP2 | 102 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply(String, int, List, List) may expose internal representation by storing an externally mutable object into ServiceReply.iURLEntries | MALICIOUS_CODE | EI_EXPOSE_REP2 | 118 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply(String, int, List, List) may expose internal representation by storing an externally mutable object into ServiceReply.iURLExceptions | MALICIOUS_CODE | EI_EXPOSE_REP2 | 119 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply(MsgHeader, int, List, List) may expose internal representation by storing an externally mutable object into ServiceReply.iURLEntries | MALICIOUS_CODE | EI_EXPOSE_REP2 | 135 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceReply(MsgHeader, int, List, List) may expose internal representation by storing an externally mutable object into ServiceReply.iURLExceptions | MALICIOUS_CODE | EI_EXPOSE_REP2 | 136 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceTypeReply
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceTypeReply(int, List) may expose internal representation by storing an externally mutable object into ServiceTypeReply.iServTypeList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 96 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceTypeReply(String, int, List) may expose internal representation by storing an externally mutable object into ServiceTypeReply.iServTypeList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 109 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.msg.ServiceTypeReply(MsgHeader, int, List) may expose internal representation by storing an externally mutable object into ServiceTypeReply.iServTypeList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 122 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.sa.DatagramThread
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Incorrect lazy initialization of static field org.sentrysoftware.wbem.sblim.slp.internal.sa.DatagramThread.cMCastSocket in org.sentrysoftware.wbem.sblim.slp.internal.sa.DatagramThread.close() | MT_CORRECTNESS | LI_LAZY_INIT_STATIC | 119-121 | Medium |
| Incorrect lazy initialization and update of static field org.sentrysoftware.wbem.sblim.slp.internal.sa.DatagramThread.cMCastSocket in org.sentrysoftware.wbem.sblim.slp.internal.sa.DatagramThread.init() | MT_CORRECTNESS | LI_LAZY_INIT_UPDATE_STATIC | 99-100 | High |
org.sentrysoftware.wbem.sblim.slp.internal.sa.MessageTable$RequestDescriptor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.internal.sa.MessageTable$RequestDescriptor at new org.sentrysoftware.wbem.sblim.slp.internal.sa.MessageTable$RequestDescriptor(InetAddress, SLPMessage) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 82 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.sa.RecieverThread
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.slp.internal.sa.RecieverThread(String, ServiceAgent) may expose internal representation by storing an externally mutable object into RecieverThread.iSrvAgent | MALICIOUS_CODE | EI_EXPOSE_REP2 | 74 | Medium |
| Dubious catching of IllegalMonitorStateException in org.sentrysoftware.wbem.sblim.slp.internal.sa.RecieverThread.run() | BAD_PRACTICE | IMSE_DONT_CATCH_IMSE | 125 | High |
| Wait not in loop in org.sentrysoftware.wbem.sblim.slp.internal.sa.RecieverThread.wait4init() | MT_CORRECTNESS | WA_NOT_IN_LOOP | 91 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester at new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 139 | Medium |
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester at new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable, InetAddress) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 89 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable) may expose internal representation by storing an externally mutable object into DatagramRequester.iReqMsg | MALICIOUS_CODE | EI_EXPOSE_REP2 | 135 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable) may expose internal representation by storing an externally mutable object into DatagramRequester.iResTable | MALICIOUS_CODE | EI_EXPOSE_REP2 | 136 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable, InetAddress) may expose internal representation by storing an externally mutable object into DatagramRequester.iDst0 | MALICIOUS_CODE | EI_EXPOSE_REP2 | 122 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable, InetAddress) may expose internal representation by storing an externally mutable object into DatagramRequester.iReqMsg | MALICIOUS_CODE | EI_EXPOSE_REP2 | 120 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.DatagramRequester(RequestMessage, ResultTable, InetAddress) may expose internal representation by storing an externally mutable object into DatagramRequester.iResTable | MALICIOUS_CODE | EI_EXPOSE_REP2 | 121 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.ua.ResultTable
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Dubious catching of IllegalMonitorStateException in org.sentrysoftware.wbem.sblim.slp.internal.ua.ResultTable.wakeUp() | BAD_PRACTICE | IMSE_DONT_CATCH_IMSE | 226 | High |
| Wait not in loop in org.sentrysoftware.wbem.sblim.slp.internal.ua.ResultTable.hasNext() | MT_CORRECTNESS | WA_NOT_IN_LOOP | 177 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.ua.SLEnumerationImpl
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.SLEnumerationImpl(RequestMessage, List) may expose internal representation by storing an externally mutable object into SLEnumerationImpl.iDAList | MALICIOUS_CODE | EI_EXPOSE_REP2 | 94 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.SLEnumerationImpl(RequestMessage, List) may expose internal representation by storing an externally mutable object into SLEnumerationImpl.iReqMsg | MALICIOUS_CODE | EI_EXPOSE_REP2 | 92 | Medium |
org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester at new org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester(ResultTable, InetAddress, RequestMessage, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 74 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester(ResultTable, InetAddress, RequestMessage, boolean) may expose internal representation by storing an externally mutable object into TCPRequester.iDestination | MALICIOUS_CODE | EI_EXPOSE_REP2 | 90 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester(ResultTable, InetAddress, RequestMessage, boolean) may expose internal representation by storing an externally mutable object into TCPRequester.iReqMsg | MALICIOUS_CODE | EI_EXPOSE_REP2 | 91 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester(ResultTable, InetAddress, RequestMessage, boolean) may expose internal representation by storing an externally mutable object into TCPRequester.iResTable | MALICIOUS_CODE | EI_EXPOSE_REP2 | 89 | Medium |
| new org.sentrysoftware.wbem.sblim.slp.internal.ua.TCPRequester(ResultTable, InetAddress, RequestMessage, boolean) invokes Thread.start() | MT_CORRECTNESS | SC_START_IN_CTOR | 96 | Medium |
Search Results for {{siteSearch | truncate:'50'}}
{{resultArray.length}}
No results.