Uploaded image for project: 'Build'
  1. Build
  2. BUILD-898

Dismiss mismatched CVE about protonmail

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Neutral Neutral
    • None
    • None
    • None 

      noexception-1.6.2.jar (pkg:maven/com.machinezoo.noexception/noexception@1.6.2, cpe:2.3:a:protonmail:protonmail:1.6.2:*:*:*:*:*:*:*) : CVE-2021-32816

      https://nvd.nist.gov/vuln/detail/CVE-2021-32816

      Detected by CVE scan on Magnolia 6.2 but no trace of such library can be found in WEB-INF/lib. Also looking at dependencies and packages of the noexception library (supposedly pulling in the vulnerable dep) nothing can be found, see https://github.com/robertvazan/noexception/tree/v1.6.2

        Acceptance criteria

              fgrilli Federico Grilli
              fgrilli Federico Grilli
              Foundation
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Task DoR