[FP]: wildfly for CVE-2020-10740 #6408
Comments
|
Maven Coordinates <dependency>
<groupId>org.jboss.activemq.artemis.integration</groupId>
<artifactId>artemis-wildfly-integration</artifactId>
<version>1.0.2</version>
</dependency>Suppression rule: <suppress base="true">
<notes><![CDATA[
FP per issue #6408
]]></notes>
<packageUrl regex="true">^pkg:maven/org\.jboss\.activemq\.artemis\.integration/artemis-wildfly-integration@.*$</packageUrl>
<cpe>cpe:/a:redhat:wildfly</cpe>
</suppress>Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/7580329594 |
|
approved |
|
Suppress rule has been added to the |
This was referenced Feb 11, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Package URl
pkg:maven/org.jboss.activemq.artemis.integration/artemis-wildfly-integration@1.0.2
CPE
cpe:2.3:a:redhat:wildfly::::::::
CVE
CVE-2020-10740
ODC Integration
None
ODC Version
9.0.5
Description
Actual vulnerable component is wildfly-ejb3.
Since #6401 was failed to evaluate, please consider this ticket
more jar were reported with same vulnerabilities mentioned below Package URIs:
pkg:maven/org.keycloak/keycloak-wildfly-adduser@6.0.1
pkg:maven/org.wildfly.core/wildfly-controller@8.0.0.Final
The text was updated successfully, but these errors were encountered: