Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FP]: CVE-2024-21907 FP for Newtonsoft.Json > 13.0.1 #6413

Open
kiryl0277 opened this issue Jan 22, 2024 · 5 comments
Open

[FP]: CVE-2024-21907 FP for Newtonsoft.Json > 13.0.1 #6413

kiryl0277 opened this issue Jan 22, 2024 · 5 comments
Labels
FP Report

Comments

@kiryl0277
Copy link

kiryl0277 commented Jan 22, 2024
edited
Loading

Package URl

pkg:generic/[email protected]

CPE

cpe:2.3:a:newtonsoft:json.net:::::::: versions up to (excluding) 13.0.1

CVE

CVE-2024-21907

ODC Integration

{"label"=>"CLI"}

ODC Version

9.0.9

Description

As stated in CVE

DependencyChecker reports vulnerability CVE-2024-21907 on locally installed version of Newtonsoft.Json library 13.0.3

According to the description of CVE-2024-21907 the issue was fixed in Newtonsoft library 13.0.1
@kiryl0277 kiryl0277 changed the title [FP]: Vulnerability on Newtonsoft.Json > 13.0.1 [FP]: CVE-2024-21907 FP for Newtonsoft.Json > 13.0.1 Jan 24, 2024
@kiryl0277
Copy link
Author

Guys, any update? Does anybody encounter the same issue?

@sOhAZ-the-PG
Copy link

Yeah, I found this issue too. 🥲

1 similar comment
@udaykumarburgula2k
Copy link

Yeah, I found this issue too. 🥲

@StavHayounNoiberg
Copy link

Same issue. Any update on this?

@StavHayounNoiberg StavHayounNoiberg mentioned this issue May 15, 2024
Open
@harikr566631
Copy link

Any update on this issue-resolution?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
FP Report
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@sOhAZ-the-PG @StavHayounNoiberg @kiryl0277 @udaykumarburgula2k @harikr566631