Incorrect vulnerability details - CVE-2015-5162 & CVE-2021-3563

OSSIndex / vulns

Report missing advisories and corrections on OSS Index

17 stars 12 forks source link

Incorrect vulnerability details - CVE-2015-5162 & CVE-2021-3563 #330

Open ghost opened 1 year ago

ghost commented 1 year ago

Vulnerability URL

https://nvd.nist.gov/vuln/detail/CVE-2021-3563
https://nvd.nist.gov/vuln/detail/CVE-2015-5162

Component URL

https://mvnrepository.com/artifact/com.woorea/keystone-client/3.2.7
https://mvnrepository.com/artifact/com.woorea/glance-model/3.2.7

Description Two known severe vulnerabilities are not being reported by the tool.

ken-duck commented 1 year ago

Thank you for your report. We are migrating to a new email-based reporting system in order to better mesh with our internal processes, which will allow us to be more reactive to our users. I have moved your request to the internal tracking system and the research team will look into the issue shortly.

If you notice further issues or would like to follow up on this one, please email ossindex@sonatype.org