Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2014-0114 #358

Open
Pytry opened this issue Dec 5, 2016 · 1 comment
Open

CVE-2014-0114 #358

Pytry opened this issue Dec 5, 2016 · 1 comment

Comments

@Pytry
Copy link

Pytry commented Dec 5, 2016

Less4j depends on commons-beanutils:commons-beanutils:1.8.3 which has a vulnerqbility s reported by the NVD. At the moment, there is no released version of commons-beanutils that is not vulnerable. This is related to Issue 346 since it is also being caused by the same dependency, but hte vulnerability is different.

Issue 346: #346

NVD Report: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0114
@robertoschwald
Copy link

Duplicate of #346

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@robertoschwald @Pytry