You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
It is a false positive as it checks every package with word "prometheus" and its version to verify the eligibility for CVE-2019-3826 which shouldn't be the case.
The text was updated successfully, but these errors were encountered:
Package URl
pkg:maven/io.opentelemetry.contrib/opentelemetry-prometheus-client-bridge@1.35.0-alpha
CPE
cpe:2.3:a:prometheus:prometheus:::::::: versions up to (excluding) 2.7.1
CVE
CVE-2019-3826
ODC Integration
{"label"=>"Gradle Plugin"}
ODC Version
9.0.3
Description
It is a false positive as it checks every package with word "prometheus" and its version to verify the eligibility for CVE-2019-3826 which shouldn't be the case.
The text was updated successfully, but these errors were encountered: