SNMP Java Client 2.1.00
-
Home
- Project Documentation Project Reports 9
SpotBugs Bug Detector Report
The following document contains the results of SpotBugs[1]
SpotBugs Version is 4.9.2
Threshold is medium
Effort is default
Summary
| Classes | Bugs | Errors | Missing Classes |
|---|---|---|---|
| 146 | 292 | 0 | 0 |
Files
org.bouncycastle.crypto.KeyGenerationParameters
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.bouncycastle.crypto.KeyGenerationParameters.getRandom() may expose internal representation by returning KeyGenerationParameters.random | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 55[3] | Medium |
| new org.bouncycastle.crypto.KeyGenerationParameters(SecureRandom, int) may expose internal representation by storing an externally mutable object into KeyGenerationParameters.random | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 44[5] | Medium |
org.bouncycastle.crypto.engines.AESEngine
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Complicated, subtle or wrong increment in for-loop org.bouncycastle.crypto.engines.AESEngine.generateWorkingKey(byte[], boolean) | STYLE | QF_QUESTIONABLE_FOR_LOOP[6] | 308[7] | Medium |
org.bouncycastle.crypto.engines.DESEngine
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Vacuous iand operation on DESEngine.java:[line 412] in org.bouncycastle.crypto.engines.DESEngine.desFunc(int[], byte[], int, byte[], int) | STYLE | INT_VACUOUS_BIT_OPERATION[8] | 412[9] | Medium |
org.bouncycastle.crypto.params.DESParameters
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.bouncycastle.crypto.params.DESParameters at new org.bouncycastle.crypto.params.DESParameters(byte[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 31[11] | Medium |
org.bouncycastle.crypto.params.KeyParameter
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.bouncycastle.crypto.params.KeyParameter.getKey() may expose internal representation by returning KeyParameter.key | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 46[12] | Medium |
org.metricshub.snmp.client.SnmpClient
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.metricshub.snmp.client.SnmpClient at new org.metricshub.snmp.client.SnmpClient(String, int, int, int[], String, String, String, String, String, String, String, byte[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 123[13] | Medium |
| new org.metricshub.snmp.client.SnmpClient(String, int, int, int[], String, String, String, String, String, String, String, byte[]) may expose internal representation by storing an externally mutable object into SnmpClient.contextEngineID | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 137[14] | Medium |
| new org.metricshub.snmp.client.SnmpClient(String, int, int, int[], String, String, String, String, String, String, String, byte[]) may expose internal representation by storing an externally mutable object into SnmpClient.retryIntervals | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 129[15] | Medium |
uk.co.westhawk.snmp.beans.AnnexModemStatusBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 444[17] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 597[18] | Medium |
| uk.co.westhawk.snmp.beans.AnnexModemStatusBean.update(Observable, Object) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 583[20] | Medium |
| uk.co.westhawk.snmp.beans.AnnexModemStatusBean.update(Observable, Object) invokes inefficient new Long(long) constructor; use Long.valueOf(long) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 508[21] | Medium |
| uk.co.westhawk.snmp.beans.AnnexModemStatusBean.getLastUpdateDate() may expose internal representation by returning AnnexModemStatusBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 294[22] | Medium |
| uk.co.westhawk.snmp.beans.AnnexModemStatusBean.setDefaultTreeModel(DefaultTreeModel) may expose internal representation by storing an externally mutable object into AnnexModemStatusBean.treeModel | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 615[23] | Medium |
| uk.co.westhawk.snmp.beans.AnnexModemStatusBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into AnnexModemStatusBean.pduGetNext | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 498[24] | Medium |
| uk.co.westhawk.snmp.beans.AnnexModemStatusBean.sig_state should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 226[26] | Medium |
| Unread field: uk.co.westhawk.snmp.beans.AnnexModemStatusBean.deviceType | PERFORMANCE | URF_UNREAD_FIELD[27] | 243[28] | Medium |
| Unread field: uk.co.westhawk.snmp.beans.AnnexModemStatusBean.modemStatus | PERFORMANCE | URF_UNREAD_FIELD[27] | 245[29] | Medium |
| Unread field: uk.co.westhawk.snmp.beans.AnnexModemStatusBean.openCount | PERFORMANCE | URF_UNREAD_FIELD[27] | 244[30] | Medium |
uk.co.westhawk.snmp.beans.AnnexModemStatusBean$PortInfo
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should uk.co.westhawk.snmp.beans.AnnexModemStatusBean$PortInfo be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC[31] | 636-716[32] | Medium |
uk.co.westhawk.snmp.beans.AscendActiveSessionBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 269[33] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 341[34] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.GetNextPdu_vec in uk.co.westhawk.snmp.beans.AscendActiveSessionBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 324[36] | Medium |
| uk.co.westhawk.snmp.beans.AscendActiveSessionBean.getLastUpdateDate() may expose internal representation by returning AscendActiveSessionBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 220[37] | Medium |
| uk.co.westhawk.snmp.beans.AscendActiveSessionBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into AscendActiveSessionBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 324[36] | Medium |
uk.co.westhawk.snmp.beans.DialogChannelStatusBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 429[38] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 547[39] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.GetNextPdu_vec in uk.co.westhawk.snmp.beans.DialogChannelStatusBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 482[40] | Medium |
| uk.co.westhawk.snmp.beans.DialogChannelStatusBean.update(Observable, Object) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 495[41] | Medium |
| uk.co.westhawk.snmp.beans.DialogChannelStatusBean.getLastUpdateDate() may expose internal representation by returning DialogChannelStatusBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 279[42] | Medium |
| uk.co.westhawk.snmp.beans.DialogChannelStatusBean.setDefaultTreeModel(DefaultTreeModel) may expose internal representation by storing an externally mutable object into DialogChannelStatusBean.treeModel | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 564[43] | Medium |
| uk.co.westhawk.snmp.beans.DialogChannelStatusBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into DialogChannelStatusBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 482[40] | Medium |
| uk.co.westhawk.snmp.beans.DialogChannelStatusBean.vch_status should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 197[44] | Medium |
uk.co.westhawk.snmp.beans.DialogChannelStatusBean$ChannelStatus
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should uk.co.westhawk.snmp.beans.DialogChannelStatusBean$ChannelStatus be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC[31] | 584-661[45] | Medium |
uk.co.westhawk.snmp.beans.InterfaceIndexesBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 182[46] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 257[47] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.InterfaceGetNextPdu in uk.co.westhawk.snmp.beans.InterfaceIndexesBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 232[48] | Medium |
| uk.co.westhawk.snmp.beans.InterfaceIndexesBean.getLastUpdateDate() may expose internal representation by returning InterfaceIndexesBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 146[49] | Medium |
| uk.co.westhawk.snmp.beans.InterfaceIndexesBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into InterfaceIndexesBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 232[48] | Medium |
uk.co.westhawk.snmp.beans.IsHostReachableBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.UpSincePdu in uk.co.westhawk.snmp.beans.IsHostReachableBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 260[50] | Medium |
| uk.co.westhawk.snmp.beans.IsHostReachableBean.setReachable(boolean) invokes inefficient Boolean constructor; use Boolean.valueOf(...) instead | PERFORMANCE | DM_BOOLEAN_CTOR[51] | 182[52] | Medium |
| uk.co.westhawk.snmp.beans.IsHostReachableBean.getUpSinceDate() may expose internal representation by returning IsHostReachableBean.upSince | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 143[53] | Medium |
| uk.co.westhawk.snmp.beans.IsHostReachableBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into IsHostReachableBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 260[50] | Medium |
uk.co.westhawk.snmp.beans.NTPrintQBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 203[54] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 284[55] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.stack.GetNextPdu in uk.co.westhawk.snmp.beans.NTPrintQBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 254[56] | Medium |
| uk.co.westhawk.snmp.beans.NTPrintQBean.getLastUpdateDate() may expose internal representation by returning NTPrintQBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 147[57] | Medium |
| uk.co.westhawk.snmp.beans.NTPrintQBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into NTPrintQBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 254[56] | Medium |
uk.co.westhawk.snmp.beans.NTServiceNamesBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 206[58] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 284[59] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.stack.GetNextPdu in uk.co.westhawk.snmp.beans.NTServiceNamesBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 257[60] | Medium |
| uk.co.westhawk.snmp.beans.NTServiceNamesBean.getLastUpdateDate() may expose internal representation by returning NTServiceNamesBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 147[61] | Medium |
| uk.co.westhawk.snmp.beans.NTServiceNamesBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into NTServiceNamesBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 257[60] | Medium |
uk.co.westhawk.snmp.beans.NTSharedResBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 208[62] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 286[63] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.stack.GetNextPdu in uk.co.westhawk.snmp.beans.NTSharedResBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 259[64] | Medium |
| uk.co.westhawk.snmp.beans.NTSharedResBean.getLastUpdateDate() may expose internal representation by returning NTSharedResBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 147[65] | Medium |
| uk.co.westhawk.snmp.beans.NTSharedResBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into NTSharedResBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 259[64] | Medium |
uk.co.westhawk.snmp.beans.NTUserNamesBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 202[66] | Medium |
| Shared primitive variable "isGetNextInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 280[67] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.stack.GetNextPdu in uk.co.westhawk.snmp.beans.NTUserNamesBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 253[68] | Medium |
| uk.co.westhawk.snmp.beans.NTUserNamesBean.getLastUpdateDate() may expose internal representation by returning NTUserNamesBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 147[69] | Medium |
| uk.co.westhawk.snmp.beans.NTUserNamesBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into NTUserNamesBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 253[68] | Medium |
uk.co.westhawk.snmp.beans.NcdPerfDataBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Boxing/unboxing to parse a primitive uk.co.westhawk.snmp.beans.NcdPerfDataBean.setUpdateInterval(String) | PERFORMANCE | DM_BOXED_PRIMITIVE_FOR_PARSING[70] | 225[71] | High |
| uk.co.westhawk.snmp.beans.NcdPerfDataBean.getLastUpdateDate() may expose internal representation by returning NcdPerfDataBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 238[72] | Medium |
uk.co.westhawk.snmp.beans.OneInterfaceBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| This write of the 64-bit primitive variable "speed" may not atomic | MT_CORRECTNESS | AT_NONATOMIC_64BIT_PRIMITIVE[73] | 253[74] | Medium |
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 205[75] | Medium |
| Shared primitive variable "index" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 143[76] | Medium |
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 260[77] | Medium |
| uk.co.westhawk.snmp.beans.OneInterfaceBean.getLastUpdateDate() may expose internal representation by returning OneInterfaceBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 191[78] | Medium |
uk.co.westhawk.snmp.beans.OneNTPrintQBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 205[79] | Medium |
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 259[80] | Medium |
| Shared primitive variable "jobs" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 256[81] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.GetPdu_vec in uk.co.westhawk.snmp.beans.OneNTPrintQBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 251[82] | Medium |
| uk.co.westhawk.snmp.beans.OneNTPrintQBean.getLastUpdateDate() may expose internal representation by returning OneNTPrintQBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 191[83] | Medium |
| uk.co.westhawk.snmp.beans.OneNTPrintQBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into OneNTPrintQBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 251[82] | Medium |
uk.co.westhawk.snmp.beans.OneNTServiceBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 266[84] | Medium |
| Shared primitive variable "canPause" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 332[85] | Medium |
| Shared primitive variable "canUninst" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 329[86] | Medium |
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 335[87] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.GetPdu_vec in uk.co.westhawk.snmp.beans.OneNTServiceBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 316[88] | Medium |
| uk.co.westhawk.snmp.beans.OneNTServiceBean.getLastUpdateDate() may expose internal representation by returning OneNTServiceBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 252[89] | Medium |
| uk.co.westhawk.snmp.beans.OneNTServiceBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into OneNTServiceBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 316[88] | Medium |
| uk.co.westhawk.snmp.beans.OneNTServiceBean.msg_inst_state should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 111[90] | Medium |
| uk.co.westhawk.snmp.beans.OneNTServiceBean.msg_oper_state should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 119[91] | Medium |
uk.co.westhawk.snmp.beans.OneNTSharedResBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 216[92] | Medium |
| Shared primitive variable "isPduInFlight" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 283[93] | Medium |
| Unchecked/unconfirmed cast from java.util.Observable to uk.co.westhawk.snmp.pdu.GetPdu_vec in uk.co.westhawk.snmp.beans.OneNTSharedResBean.update(Observable, Object) | STYLE | BC_UNCONFIRMED_CAST[35] | 263[94] | Medium |
| uk.co.westhawk.snmp.beans.OneNTSharedResBean.getLastUpdateDate() may expose internal representation by returning OneNTSharedResBean.lastUpdateDate | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 202[95] | Medium |
| uk.co.westhawk.snmp.beans.OneNTSharedResBean.update(Observable, Object) may expose internal representation by storing an externally mutable object into OneNTSharedResBean.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 263[94] | Medium |
uk.co.westhawk.snmp.beans.SNMPBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "port" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 239[96] | Medium |
| Boxing/unboxing to parse a primitive uk.co.westhawk.snmp.beans.SNMPBean.setPort(String) | PERFORMANCE | DM_BOXED_PRIMITIVE_FOR_PARSING[70] | 253[97] | High |
| Questionable use of non-short-circuit logic in uk.co.westhawk.snmp.beans.SNMPBean.setCommunityName(String) | STYLE | NS_NON_SHORT_CIRCUIT[98] | 275[99] | High |
uk.co.westhawk.snmp.beans.SNMPRunBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "interval" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 133[100] | Medium |
| Boxing/unboxing to parse a primitive uk.co.westhawk.snmp.beans.SNMPRunBean.setUpdateInterval(String) | PERFORMANCE | DM_BOXED_PRIMITIVE_FOR_PARSING[70] | 147[101] | High |
uk.co.westhawk.snmp.beans.UsmBeingDiscoveredBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.beans.UsmBeingDiscoveredBean at new uk.co.westhawk.snmp.beans.UsmBeingDiscoveredBean(SnmpContextv3, UsmAgent) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 128[102] | Medium |
| new uk.co.westhawk.snmp.beans.UsmBeingDiscoveredBean(SnmpContextv3, UsmAgent) may expose internal representation by storing an externally mutable object into UsmBeingDiscoveredBean.context | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 114[103] | Medium |
| new uk.co.westhawk.snmp.beans.UsmBeingDiscoveredBean(SnmpContextv3, UsmAgent) may expose internal representation by storing an externally mutable object into UsmBeingDiscoveredBean.usmAgent | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 113[104] | Medium |
uk.co.westhawk.snmp.beans.UsmDiscoveryBean
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Dead store to $L4 in uk.co.westhawk.snmp.beans.UsmDiscoveryBean.discoveryEngineId() | STYLE | DLS_DEAD_LOCAL_STORE[105] | 273[106] | Medium |
| Dead store to vars in uk.co.westhawk.snmp.beans.UsmDiscoveryBean.discoveryTimeLine() | STYLE | DLS_DEAD_LOCAL_STORE[105] | 322[107] | Medium |
| uk.co.westhawk.snmp.beans.UsmDiscoveryBean.setRetryIntervals(int[]) may expose internal representation by storing an externally mutable object into UsmDiscoveryBean.retry_intervals | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 174[108] | Medium |
uk.co.westhawk.snmp.beans.ethernet
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| This write of the 64-bit primitive variable "speed" may not atomic | MT_CORRECTNESS | AT_NONATOMIC_64BIT_PRIMITIVE[73] | 495[109] | Medium |
| Shared primitive variable "first" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 524[110] | Medium |
| Shared primitive variable "foundEthernet" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 472[111] | Medium |
| Shared primitive variable "index" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 471[112] | Medium |
| uk.co.westhawk.snmp.beans.ethernet.update(Observable, Object) invokes inefficient new Long(long) constructor; use Long.valueOf(long) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 513[113] | Medium |
uk.co.westhawk.snmp.beans.memory
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| This write of the 64-bit primitive variable "memory" may not atomic | MT_CORRECTNESS | AT_NONATOMIC_64BIT_PRIMITIVE[73] | 753[114] | Medium |
| Shared primitive variable "isAvailable" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 763[115] | Medium |
| uk.co.westhawk.snmp.beans.memory.update(Observable, Object) invokes inefficient new Long(long) constructor; use Long.valueOf(long) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 759[116] | Medium |
uk.co.westhawk.snmp.beans.ncdPart
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Unused field: uk.co.westhawk.snmp.beans.ncdPart.me | PERFORMANCE | UUF_UNUSED_FIELD[117] | Not available | Medium |
uk.co.westhawk.snmp.beans.user
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "first" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 695[118] | Medium |
| Shared primitive variable "foundUser" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 640[119] | Medium |
| Shared primitive variable "index" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 639[120] | Medium |
| Shared primitive variable "isNcd" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 628[121] | Medium |
| Dead store to i in uk.co.westhawk.snmp.beans.user.update(Observable, Object) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 681[122] | Medium |
| Dead store to n in uk.co.westhawk.snmp.beans.user.update(Observable, Object) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 682[123] | Medium |
uk.co.westhawk.snmp.event.DecodedPduEvent
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.event.DecodedPduEvent.getPdu() may expose internal representation by returning DecodedPduEvent.pdu | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 102[124] | Medium |
| new uk.co.westhawk.snmp.event.DecodedPduEvent(Object, Pdu, int) may expose internal representation by storing an externally mutable object into DecodedPduEvent.pdu | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 82[125] | Medium |
uk.co.westhawk.snmp.event.RawPduEvent
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.event.RawPduEvent.getMessage() may expose internal representation by returning RawPduEvent.message | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 131[126] | Medium |
| new uk.co.westhawk.snmp.event.RawPduEvent(Object, int, String, byte[], int) may expose internal representation by storing an externally mutable object into RawPduEvent.message | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 91[127] | Medium |
uk.co.westhawk.snmp.event.RawPduReceivedSupport
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Inconsistent synchronization of uk.co.westhawk.snmp.event.RawPduReceivedSupport.pduListeners; locked 71% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 139[129] | Medium |
uk.co.westhawk.snmp.event.RequestPduReceivedSupport
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Inconsistent synchronization of uk.co.westhawk.snmp.event.RequestPduReceivedSupport.pduListeners; locked 71% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 130[130] | Medium |
uk.co.westhawk.snmp.event.TrapReceivedSupport
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Inconsistent synchronization of uk.co.westhawk.snmp.event.TrapReceivedSupport.trapListeners; locked 71% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 130[131] | Medium |
uk.co.westhawk.snmp.net.TCPSocket
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.net.TCPSocket.receive(int) ignores result of java.io.InputStream.read(byte[], int, int) | BAD_PRACTICE | RR_NOT_CHECKED[132] | 190[133] | Medium |
uk.co.westhawk.snmp.pdu.BlockPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new uk.co.westhawk.snmp.pdu.BlockPdu(SnmpContextBasisFace) may expose internal representation by storing an externally mutable object into BlockPdu.context | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 98[134] | Medium |
| uk.co.westhawk.snmp.pdu.BlockPdu.setRetryIntervals(int[]) may expose internal representation by storing an externally mutable object into BlockPdu.retry_intervals | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 217[135] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.pdu.BlockPdu.max_rep; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 179[136] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.pdu.BlockPdu.non_rep; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 178[137] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.pdu.BlockPdu.retry_intervals; locked 66% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 217[135] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.pdu.BlockPdu.type; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 206[138] | Medium |
uk.co.westhawk.snmp.pdu.DiscoveryPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new uk.co.westhawk.snmp.pdu.DiscoveryPdu(SnmpContextv3Face) may expose internal representation by storing an externally mutable object into DiscoveryPdu.context | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 76[139] | Medium |
uk.co.westhawk.snmp.pdu.InterfaceGetNextPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Dead store to answered in uk.co.westhawk.snmp.pdu.InterfaceGetNextPdu.getIfNumber(SnmpContextBasisFace) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 136[140] | Medium |
uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub at new uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub(SnmpContextBasisFace, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 151[141] | Medium |
| Dead store to oid in uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub.new_value(int, varbind) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 214[142] | Medium |
| new uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub(SnmpContextBasisFace) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 130[143] | Medium |
| uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub.getIfOperStatusStr() invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 383[144] | Medium |
| uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub.toString() invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 443[145] | Medium |
| uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub.all_oids should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 100[146] | Medium |
| uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub.col_oids should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 91[147] | Medium |
| uk.co.westhawk.snmp.pdu.InterfaceGetNextPduStub.scal_oids should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 86[148] | Medium |
uk.co.westhawk.snmp.pdu.InterfacePdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.InterfacePdu at new uk.co.westhawk.snmp.pdu.InterfacePdu(SnmpContextBasisFace, Observer, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 168[149] | Medium |
| Unused field: uk.co.westhawk.snmp.pdu.InterfacePdu.speed | PERFORMANCE | UUF_UNUSED_FIELD[117] | Not available | Medium |
uk.co.westhawk.snmp.pdu.InterfacesPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.InterfacesPdu at new uk.co.westhawk.snmp.pdu.InterfacesPdu(SnmpContextBasisFace, Observer, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 96[150] | Medium |
| uk.co.westhawk.snmp.pdu.InterfacesPdu.getInterfacePdus() may expose internal representation by returning InterfacesPdu.ifs | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 105[151] | Medium |
uk.co.westhawk.snmp.pdu.OneGetBulkPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.pdu.OneGetBulkPdu.getVarbinds() may expose internal representation by returning OneGetBulkPdu.vars | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 102[152] | Medium |
uk.co.westhawk.snmp.pdu.OneGetNextPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneGetNextPdu at new uk.co.westhawk.snmp.pdu.OneGetNextPdu(SnmpContextBasisFace, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 101[153] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneGetNextPdu at new uk.co.westhawk.snmp.pdu.OneGetNextPdu(SnmpContextBasisFace, String, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 118[154] | Medium |
uk.co.westhawk.snmp.pdu.OneGetPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneGetPdu at new uk.co.westhawk.snmp.pdu.OneGetPdu(SnmpContextBasisFace, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 99[155] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneGetPdu at new uk.co.westhawk.snmp.pdu.OneGetPdu(SnmpContextBasisFace, String, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 116[156] | Medium |
uk.co.westhawk.snmp.pdu.OneInformPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneInformPdu at new uk.co.westhawk.snmp.pdu.OneInformPdu(SnmpContextBasisFace, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 109[157] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneInformPdu at new uk.co.westhawk.snmp.pdu.OneInformPdu(SnmpContextBasisFace, String, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 126[158] | Medium |
uk.co.westhawk.snmp.pdu.OneIntPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneIntPdu at new uk.co.westhawk.snmp.pdu.OneIntPdu(SnmpContextBasisFace, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 112[159] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneIntPdu at new uk.co.westhawk.snmp.pdu.OneIntPdu(SnmpContextBasisFace, String, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 129[160] | Medium |
| uk.co.westhawk.snmp.pdu.OneIntPdu.new_value(int, varbind) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 154[161] | Medium |
uk.co.westhawk.snmp.pdu.OneSetPdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneSetPdu at new uk.co.westhawk.snmp.pdu.OneSetPdu(SnmpContextBasisFace, String, AsnObject) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 103[162] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.pdu.OneSetPdu at new uk.co.westhawk.snmp.pdu.OneSetPdu(SnmpContextBasisFace, String, AsnObject, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 121[163] | Medium |
uk.co.westhawk.snmp.pdu.UpSincePdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.pdu.UpSincePdu at new uk.co.westhawk.snmp.pdu.UpSincePdu(SnmpContextBasisFace, Observer) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 84[164] | Medium |
| uk.co.westhawk.snmp.pdu.UpSincePdu.getDate() may expose internal representation by returning UpSincePdu.since | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 93[165] | Medium |
uk.co.westhawk.snmp.stack.AbstractSnmpContext
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "maxRecvSize" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 373[166] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AbstractSnmpContext at new uk.co.westhawk.snmp.stack.AbstractSnmpContext(String, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 150[167] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AbstractSnmpContext at new uk.co.westhawk.snmp.stack.AbstractSnmpContext(String, int, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 167[168] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AbstractSnmpContext at new uk.co.westhawk.snmp.stack.AbstractSnmpContext(String, int, String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 209[169] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.stack.AbstractSnmpContext.isDestroyed; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 475[170] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.stack.AbstractSnmpContext.me; locked 54% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 426[171] | Medium |
| Redundant nullcheck of sf, which is known to be non-null in uk.co.westhawk.snmp.stack.AbstractSnmpContext.getSocket(String) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE[172] | 265[173] | Medium |
uk.co.westhawk.snmp.stack.AsnDecoderv3
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Return value of SnmpContextv3Basis.getUsmAgent() ignored, but method has no side effect | STYLE | RV_RETURN_VALUE_IGNORED_NO_SIDE_EFFECT[174] | 211[175] | Medium |
uk.co.westhawk.snmp.stack.AsnInteger
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnInteger at new uk.co.westhawk.snmp.stack.AsnInteger(InputStream, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 103[176] | Medium |
uk.co.westhawk.snmp.stack.AsnNull
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Dead store to anotherNull in uk.co.westhawk.snmp.stack.AsnNull.equals(Object) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 123[177] | Medium |
uk.co.westhawk.snmp.stack.AsnObject
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.AsnObject.debug isn't final and cannot be protected from malicious code | MALICIOUS_CODE | MS_CANNOT_BE_FINAL[178] | 94[179] | Medium |
| Primitive field uk.co.westhawk.snmp.stack.AsnObject.debug is public and set from inside the class, which makes it too exposed. Consider making it private to limit external accessibility. | BAD_PRACTICE | PA_PUBLIC_PRIMITIVE_ATTRIBUTE[180] | 104[181] | Medium |
uk.co.westhawk.snmp.stack.AsnObjectId
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnObjectId at new uk.co.westhawk.snmp.stack.AsnObjectId(InputStream, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 134[182] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnObjectId at new uk.co.westhawk.snmp.stack.AsnObjectId(String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 178[183] | Medium |
| Dead store to oidArray in uk.co.westhawk.snmp.stack.AsnObjectId.toArrayOfLongs(String) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 201[184] | Medium |
uk.co.westhawk.snmp.stack.AsnOctets
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnOctets at new uk.co.westhawk.snmp.stack.AsnOctets(InputStream, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 328[185] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnOctets at new uk.co.westhawk.snmp.stack.AsnOctets(Inet4Address, byte) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 238[186] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnOctets at new uk.co.westhawk.snmp.stack.AsnOctets(InetAddress) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 209[187] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnOctets at new uk.co.westhawk.snmp.stack.AsnOctets(byte[]) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 139[188] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnOctets at new uk.co.westhawk.snmp.stack.AsnOctets(byte[], byte) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 156[189] | Medium |
| Dead store to minUTC in uk.co.westhawk.snmp.stack.AsnOctets.getCalendar() | STYLE | DLS_DEAD_LOCAL_STORE[105] | 732[190] | Medium |
| Found reliance on default encoding in uk.co.westhawk.snmp.stack.AsnOctets.toDisplayString(): new String(byte[]) | I18N | DM_DEFAULT_ENCODING[191] | 649[192] | High |
| new uk.co.westhawk.snmp.stack.AsnOctets(byte[], byte) may expose internal representation by storing an externally mutable object into AsnOctets.value | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 153[193] | Medium |
| uk.co.westhawk.snmp.stack.AsnOctets.HEX_PREFIX should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 104[194] | Medium |
| uk.co.westhawk.snmp.stack.AsnOctets.printableObject should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | 124[195] | Medium |
| uk.co.westhawk.snmp.stack.AsnOctets.CALFORMAT isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL[196] | 116[197] | High |
| Primitive field uk.co.westhawk.snmp.stack.AsnOctets.HEX_PREFIX is public and set from inside the class, which makes it too exposed. Consider making it private to limit external accessibility. | BAD_PRACTICE | PA_PUBLIC_PRIMITIVE_ATTRIBUTE[180] | 104[194] | Medium |
| Primitive field uk.co.westhawk.snmp.stack.AsnOctets.printableObject is public and set from inside the class, which makes it too exposed. Consider making it private to limit external accessibility. | BAD_PRACTICE | PA_PUBLIC_PRIMITIVE_ATTRIBUTE[180] | 124[195] | Medium |
| Self assignment of field AsnOctets.hash in uk.co.westhawk.snmp.stack.AsnOctets.hashCode() | CORRECTNESS | SA_FIELD_SELF_ASSIGNMENT[198] | 884[199] | High |
| Call to method of static java.text.DateFormat in uk.co.westhawk.snmp.stack.AsnOctets.toCalendar() | MT_CORRECTNESS | STCAL_INVOKE_ON_STATIC_DATE_FORMAT_INSTANCE[200] | 700[201] | Medium |
| uk.co.westhawk.snmp.stack.AsnOctets.CALFORMAT is a static field of type java.text.DateFormat, which isn't thread safe | MT_CORRECTNESS | STCAL_STATIC_SIMPLE_DATE_FORMAT_INSTANCE[202] | Not available | Medium |
uk.co.westhawk.snmp.stack.AsnSequence
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnSequence at new uk.co.westhawk.snmp.stack.AsnSequence(InputStream, int, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 110[203] | Medium |
uk.co.westhawk.snmp.stack.AsnUnsInteger
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnUnsInteger at new uk.co.westhawk.snmp.stack.AsnUnsInteger(InputStream, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 121[204] | Medium |
uk.co.westhawk.snmp.stack.AsnUnsInteger64
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.AsnUnsInteger64 at new uk.co.westhawk.snmp.stack.AsnUnsInteger64(InputStream, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 106[205] | Medium |
uk.co.westhawk.snmp.stack.DefaultAsnOctetsPrintable
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Found reliance on default encoding in uk.co.westhawk.snmp.stack.DefaultAsnOctetsPrintable.toInternationalDisplayString(byte[]): new String(byte[]) | I18N | DM_DEFAULT_ENCODING[191] | 126[206] | High |
uk.co.westhawk.snmp.stack.DefaultTrapContext
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static uk.co.westhawk.snmp.stack.DefaultTrapContext.getInstance(int) may expose internal representation by returning DefaultTrapContext.current | MALICIOUS_CODE | MS_EXPOSE_REP[207] | 161[208] | Medium |
| Public static uk.co.westhawk.snmp.stack.DefaultTrapContext.getInstance(int, String) may expose internal representation by returning DefaultTrapContext.current | MALICIOUS_CODE | MS_EXPOSE_REP[207] | 174[209] | Medium |
| Class (uk.co.westhawk.snmp.stack.DefaultTrapContext) using singleton design pattern has non-private constructor. | CORRECTNESS | SING_SINGLETON_HAS_NONPRIVATE_CONSTRUCTOR[210] | 129-130[211] | Medium |
uk.co.westhawk.snmp.stack.DefaultUsmAgent
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.DefaultUsmAgent.setSnmpContext(SnmpContextv3Basis) may expose internal representation by storing an externally mutable object into DefaultUsmAgent.context | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 161[212] | Medium |
uk.co.westhawk.snmp.stack.ListeningContext
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "counter" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 103[213] | Medium |
| Shared primitive variable "maxRecvSize" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 220[214] | Medium |
uk.co.westhawk.snmp.stack.ListeningContextPool
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.ListeningContextPool.contextPool should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | Not available | Medium |
uk.co.westhawk.snmp.stack.ListeningContextPool$Item
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Should uk.co.westhawk.snmp.stack.ListeningContextPool$Item be a _static_ inner class? | PERFORMANCE | SIC_INNER_SHOULD_BE_STATIC[31] | 405-440[215] | Medium |
uk.co.westhawk.snmp.stack.Pdu
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "req_id" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 794[216] | Medium |
| Shared primitive variable "answered" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 759[217] | Medium |
| Shared primitive variable "isTimedOut" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 761[218] | Medium |
| Shared primitive variable "added" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 233[219] | Medium |
| Shared primitive variable "errind" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 729[220] | Medium |
| Shared primitive variable "errstat" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 697[221] | Medium |
| Shared primitive variable "errstat" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 717[222] | Medium |
| Shared primitive variable "msg_type" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 685[223] | Medium |
| Shared primitive variable "answered" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 633[224] | Medium |
| uk.co.westhawk.snmp.stack.Pdu.getContext() may expose internal representation by returning Pdu.context | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 186[225] | Medium |
| uk.co.westhawk.snmp.stack.Pdu.getRetryIntervals() may expose internal representation by returning Pdu.retry_intervals | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 209[226] | Medium |
| new uk.co.westhawk.snmp.stack.Pdu(SnmpContextBasisFace) may expose internal representation by storing an externally mutable object into Pdu.context | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 159[227] | Medium |
| uk.co.westhawk.snmp.stack.Pdu.setRetryIntervals(int[]) may expose internal representation by storing an externally mutable object into Pdu.retry_intervals | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 205[228] | Medium |
| Naked notify in uk.co.westhawk.snmp.stack.Pdu.handleNoAnswer() | MT_CORRECTNESS | NN_NAKED_NOTIFY[229] | 770[230] | Medium |
uk.co.westhawk.snmp.stack.SnmpContext
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.SnmpContext.clone() does not call super.clone() | BAD_PRACTICE | CN_IDIOM_NO_SUPER_CALL[231] | 285-293[232] | High |
| uk.co.westhawk.snmp.stack.SnmpContext.processIncomingResponse(ByteArrayInputStream) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 200[233] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContext.clone() invokes inefficient new String(String) constructor | PERFORMANCE | DM_STRING_CTOR[234] | 288[235] | Medium |
| Redundant nullcheck of seqPdu, which is known to be non-null in uk.co.westhawk.snmp.stack.SnmpContext.processIncomingResponse(ByteArrayInputStream) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE[172] | 198[236] | High |
| Redundant nullcheck of seqPdu, which is known to be non-null in uk.co.westhawk.snmp.stack.SnmpContext.processIncomingPdu(byte[]) | STYLE | RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE[172] | 229[237] | Medium |
uk.co.westhawk.snmp.stack.SnmpContextPool
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.SnmpContextPool at new uk.co.westhawk.snmp.stack.SnmpContextPool(String, int) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 109[238] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.SnmpContextPool at new uk.co.westhawk.snmp.stack.SnmpContextPool(String, int, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 127[239] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.SnmpContextPool at new uk.co.westhawk.snmp.stack.SnmpContextPool(String, int, String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 147[240] | Medium |
| Exception thrown in class uk.co.westhawk.snmp.stack.SnmpContextPool at new uk.co.westhawk.snmp.stack.SnmpContextPool(String, int, String, String, String) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 174[241] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextPool.contextPool should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | Not available | Medium |
uk.co.westhawk.snmp.stack.SnmpContextv2c
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.SnmpContextv2c.clone() does not call super.clone() | BAD_PRACTICE | CN_IDIOM_NO_SUPER_CALL[231] | 231-239[242] | High |
| uk.co.westhawk.snmp.stack.SnmpContextv2c.processIncomingResponse(ByteArrayInputStream) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 157[243] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv2c.clone() invokes inefficient new String(String) constructor | PERFORMANCE | DM_STRING_CTOR[234] | 234[244] | Medium |
uk.co.westhawk.snmp.stack.SnmpContextv3
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.SnmpContextv3.clone() does not call super.clone() | BAD_PRACTICE | CN_IDIOM_NO_SUPER_CALL[231] | 416-424[245] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3.processIncomingPdu(byte[]) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 263[246] | Medium |
uk.co.westhawk.snmp.stack.SnmpContextv3Basis
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "authenticationProtocol" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 292[247] | Medium |
| Shared primitive variable "privacyProtocol" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 326[248] | Medium |
| Shared primitive variable "useAuthentication" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 245[249] | Medium |
| Shared primitive variable "usePrivacy" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 489[250] | Medium |
| Dead store to $L5 in new uk.co.westhawk.snmp.stack.SnmpContextv3Basis(String, int, String, String) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 196[251] | High |
| Dead store to rid in uk.co.westhawk.snmp.stack.SnmpContextv3Basis.processIncomingResponse(ByteArrayInputStream) | STYLE | DLS_DEAD_LOCAL_STORE[105] | 957[252] | High |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.addPdu(Pdu, boolean) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 675[253] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.processIncomingResponse(ByteArrayInputStream) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 892[254] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.cloneParameters(SnmpContextv3Face) invokes inefficient new String(String) constructor | PERFORMANCE | DM_STRING_CTOR[234] | 1062[255] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.getContextEngineId() may expose internal representation by returning SnmpContextv3Basis.contextEngineId | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 561[256] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.getUsmAgent() may expose internal representation by returning SnmpContextv3Basis.usmAgent | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 647[257] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.setContextEngineId(byte[]) may expose internal representation by storing an externally mutable object into SnmpContextv3Basis.contextEngineId | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 549[258] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Basis.setUsmAgent(UsmAgent) may expose internal representation by storing an externally mutable object into SnmpContextv3Basis.usmAgent | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 637[259] | Medium |
uk.co.westhawk.snmp.stack.SnmpContextv3Discovery
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.SnmpContextv3Discovery.clone() does not call super.clone() | BAD_PRACTICE | CN_IDIOM_NO_SUPER_CALL[231] | 188-196[260] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Discovery.processIncomingPdu(byte[]) invokes inefficient new Integer(int) constructor; use Integer.valueOf(int) instead | PERFORMANCE | DM_NUMBER_CTOR[19] | 175[261] | Medium |
uk.co.westhawk.snmp.stack.SnmpContextv3Face
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.SnmpContextv3Face.PROTOCOL_NAMES should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT[262] | 134[263] | Medium |
uk.co.westhawk.snmp.stack.SnmpContextv3Pool
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 461[264] | Medium |
| Shared primitive variable "authenticationProtocol" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 282[265] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 283[266] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 329[267] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 346[268] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 269[269] | Medium |
| Shared primitive variable "privacyProtocol" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 268[270] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 248[271] | Medium |
| Shared primitive variable "useAuthentication" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 247[272] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 307[273] | Medium |
| Shared primitive variable "usePrivacy" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 306[274] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 261[275] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 237[276] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 320[277] | Medium |
| Shared primitive variable "hasChanged" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 359[278] | Medium |
| Using .equals to compare two byte[]'s, (equivalent to ==) in uk.co.westhawk.snmp.stack.SnmpContextv3Pool.setContextEngineId(byte[]) | CORRECTNESS | EC_BAD_ARRAY_COMPARE[279] | 327[280] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Pool.getContextEngineId() may expose internal representation by returning SnmpContextv3Pool.contextEngineId | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 338[281] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Pool.getUsmAgent() may expose internal representation by returning SnmpContextv3Pool.usmAgent | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 364[282] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Pool.setContextEngineId(byte[]) may expose internal representation by storing an externally mutable object into SnmpContextv3Pool.contextEngineId | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 328[283] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Pool.setUsmAgent(UsmAgent) may expose internal representation by storing an externally mutable object into SnmpContextv3Pool.usmAgent | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 358[284] | Medium |
| uk.co.westhawk.snmp.stack.SnmpContextv3Pool.contextPool should be package protected | MALICIOUS_CODE | MS_PKGPROTECT[25] | Not available | Medium |
uk.co.westhawk.snmp.stack.TimeWindow
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Public static uk.co.westhawk.snmp.stack.TimeWindow.getCurrent() may expose internal representation by returning TimeWindow.current | MALICIOUS_CODE | MS_EXPOSE_REP[207] | 120[285] | Medium |
| uk.co.westhawk.snmp.stack.TimeWindow.clearTimeWindow(String) makes inefficient use of keySet iterator instead of entrySet iterator | PERFORMANCE | WMI_WRONG_MAP_ITERATOR[286] | 341[287] | Medium |
uk.co.westhawk.snmp.stack.TimeWindowNode
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Shared primitive variable "snmpEngineBoots" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 107[288] | Medium |
| Shared primitive variable "latestReceivedEngineTime" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 127[289] | Medium |
| Shared primitive variable "snmpEngineTime" in one thread may not yield the value of the most recent write from another thread | MT_CORRECTNESS | AT_STALE_THREAD_WRITE_OF_PRIMITIVE[16] | 126[290] | Medium |
| Vacuous comparison of integer value uk.co.westhawk.snmp.stack.TimeWindowNode.incrementSnmpEngineTime(int) | STYLE | INT_VACUOUS_COMPARISON[291] | 145[292] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.stack.TimeWindowNode.snmpEngineBoots; locked 50% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 107[288] | Medium |
| Inconsistent synchronization of uk.co.westhawk.snmp.stack.TimeWindowNode.snmpEngineTime; locked 71% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 126[290] | Medium |
uk.co.westhawk.snmp.stack.Transmitter
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Inconsistent synchronization of uk.co.westhawk.snmp.stack.Transmitter.pdu; locked 83% of time | MT_CORRECTNESS | IS2_INCONSISTENT_SYNC[128] | 166[293] | Medium |
| Naked notify in uk.co.westhawk.snmp.stack.Transmitter.stand() | MT_CORRECTNESS | NN_NAKED_NOTIFY[229] | 150[294] | Medium |
uk.co.westhawk.snmp.stack.TrapPduv1
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.TrapPduv1.getIpAddress() may expose internal representation by returning TrapPduv1.IpAddress | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 144[295] | Medium |
| uk.co.westhawk.snmp.stack.TrapPduv1.setIpAddress(byte[]) may expose internal representation by storing an externally mutable object into TrapPduv1.IpAddress | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 137[296] | Medium |
uk.co.westhawk.snmp.stack.TrapPduv2
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.TrapPduv2 at new uk.co.westhawk.snmp.stack.TrapPduv2(SnmpContextBasisFace) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 98[297] | Medium |
uk.co.westhawk.snmp.stack.usmStatsConstants
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| uk.co.westhawk.snmp.stack.usmStatsConstants.usmStatsOids should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT[262] | 112[298] | Medium |
| uk.co.westhawk.snmp.stack.usmStatsConstants.usmStatsStrings should be moved out of an interface and made package protected | MALICIOUS_CODE | MS_OOI_PKGPROTECT[262] | 124[299] | Medium |
uk.co.westhawk.snmp.stack.varbind
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class uk.co.westhawk.snmp.stack.varbind at new uk.co.westhawk.snmp.stack.varbind(AsnSequence) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW[10] | 162[300] | Medium |
| uk.co.westhawk.snmp.stack.varbind.getOid() may expose internal representation by returning varbind.name | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 172[301] | Medium |
| uk.co.westhawk.snmp.stack.varbind.getValue() may expose internal representation by returning varbind.value | MALICIOUS_CODE | EI_EXPOSE_REP[2] | 181[302] | Medium |
| new uk.co.westhawk.snmp.stack.varbind(AsnObjectId, AsnObject) may expose internal representation by storing an externally mutable object into varbind.name | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 145[303] | Medium |
| new uk.co.westhawk.snmp.stack.varbind(AsnObjectId, AsnObject) may expose internal representation by storing an externally mutable object into varbind.value | MALICIOUS_CODE | EI_EXPOSE_REP2[4] | 146[304] | Medium |
| The class name uk.co.westhawk.snmp.stack.varbind doesn't start with an upper case letter | BAD_PRACTICE | NM_CLASS_NAMING_CONVENTION[305] | 94-198[306] | Medium |
uk.co.westhawk.snmp.util.SnmpUtilities
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Random object created and used only once in uk.co.westhawk.snmp.util.SnmpUtilities.getSaltAES() | BAD_PRACTICE | DMI_RANDOM_USED_ONLY_ONCE[307] | 569[308] | High |
| Random object created and used only once in uk.co.westhawk.snmp.util.SnmpUtilities.getSaltDES(int) | BAD_PRACTICE | DMI_RANDOM_USED_ONLY_ONCE[307] | 537[309] | High |
| uk.co.westhawk.snmp.util.SnmpUtilities.toHexString(byte[]) concatenates strings using + in a loop | PERFORMANCE | SBSC_USE_STRINGBUFFER_CONCATENATION[310] | 268[311] | Medium |
Search Results for {{siteSearch | truncate:'50'}}
{{resultArray.length}}
No results.