Investigate false positive on CVE-2024-23252 #19920
Labels
bug
Something isn't working as documented
#g-endpoint-ops
Endpoint ops product group
:release
Ready to write code. Scheduled in a release. See "Making changes" in handbook.
:reproduce
Involves documenting reproduction steps in the issue
Fleet version: Fleet 0.0.0-SNAPSHOT-72d8879 β’ Go go1.22.3
Web browser and operating system: Version 126.0.6478.62 (Official Build) (arm64)
π₯ Β Actual behavior
False positive on CVE-2024-23252
π§βπ» Β Steps to reproduce
Reproduced on dogfood
π―οΈ More info (optional)
I can see in the vulncheck api how to lookup a cve by cpe, but there is no cpe published in NVD, just by this fact alone, I'm guessing this is a false positive on the vulncheck side.
The text was updated successfully, but these errors were encountered: