CVE Security Report - SICS Naming Service
The report contains data retrieved from the National Vulnerability Database: https://nvd.nist.gov, NPM Public Advisories: https://www.npmjs.com/advisories, and the RetireJS community.
| Name | Description | CWE | CVSS v2.0 Severity | CVSS v3.0 Severity | Dependency |
|---|---|---|---|---|---|
| CVE-2021-28170 | In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid. | CWE-20 | MEDIUM | MEDIUM | jakarta.el-api-3.0.2.jar |
This report was generated 16.12.2021, 20:59:33 UTC, using dependency-check version: 6.5.0.