adding how to fix and impact

HenriqueOCabral · HenriqueOCabral · commit 636c609dbfeb · 2024-12-26T21:55:32.000-03:00
diff --git a/input/new.json b/input/new.json
@@ -6,8 +6,8 @@
   ],
   "cwe": ["CWE-1204"],
   "tldr": "Affected versions of this package suffer from security misconfigurations, including using a static initialization vector (IV), generated only once during application initialization instead of being dynamically generated for each encryption operation. Additionally, the package includes an unencrypted API test endpoint that can be exposed in production environments. An attacker might leverage these vulnerabilities to gather critical information from the application.",
-  "doest_this_affect_me": "",
-  "how_to_fix": "",
+  "doest_this_affect_me": "You are affected if you are using a version that falls within the vulnerable range.",
+  "how_to_fix": "Upgrade the `adyen-java-api-library` library to the patch version.",
   "vulnerable_to": "Generation of Weak Initialization Vector",
   "related_cve_id": "",
   "language": "java",
