This repository has been archived by the owner on Jan 19, 2023. It is now read-only.
Incorrect vulnerability details for dom4j / CVE-2018-1000632 #112
Labels
bug
Something isn't working
Vulnerability URL
https://ossindex.sonatype.org/vuln/09883ba9-5094-49df-bd4a-1eaf1d6ba07b
Description
The affected version range for most of the packages are incorrect and showing as
(,2.1.1)
.The affected version range for
pkg:github/dom4j/dom4j
is[2.0.0,2.0.3), [2.1.0,2.1.1)
and is correct and is what should be set to all of the other packages.CVE-2018-1000632 was fixed on versions 2.0.3 and 2.1.1 for dom4j. References:
Note that the CPE entries in the NVD are correct.
The text was updated successfully, but these errors were encountered: