We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
There are false positives reported for api-ldap:
api-ldap-codec-core-2.0.0.AM1.jar (cpe:/a:apache:apache_http_server:2.0.0.am1, org.apache.directory.api:api-ldap-codec-core:2.0.0.AM1, cpe:/a:net-ldap_project:net-ldap:2.0.0.am1, cpe:/a:apache:directory_ldap_api:2.0.0.am1) : CVE-2014-3581, CVE-2010-1151
Both of these advisories relate to the apache http server, which has nothing to do with the Apache Directory LDAP API.
api-ldap-extras-codec also reports CVE-2015-5349:
api-ldap-extras-codec-2.0.0.AM1.jar (cpe:/a:apache:apache_http_server:2.0.0.am1, cpe:/a:apache:directory_studio:2.0.0.m9, org.apache.directory.api:api-ldap-extras-codec:2.0.0.AM1, cpe:/a:apache:ldap_studio:2.0.0.am1, cpe:/a:net-ldap_project:net-ldap:2.0.0.am1, cpe:/a:apache:directory_ldap_api:2.0.0.am1) : CVE-2015-5349, CVE-2014-3581, CVE-2010-1151
https://nvd.nist.gov/vuln/detail/CVE-2015-5349 refers to Apache Directory Studio, not the ldap API.
The text was updated successfully, but these errors were encountered:
suppression rules for #1620, #1621, #1622, #1624, #1626, #1627, #1629, …
4dce03c
…#1630, #1631, #1635, #1640, #1641, and #1642
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
Sorry, something went wrong.
No branches or pull requests
There are false positives reported for api-ldap:
api-ldap-codec-core-2.0.0.AM1.jar (cpe:/a:apache:apache_http_server:2.0.0.am1, org.apache.directory.api:api-ldap-codec-core:2.0.0.AM1, cpe:/a:net-ldap_project:net-ldap:2.0.0.am1, cpe:/a:apache:directory_ldap_api:2.0.0.am1) : CVE-2014-3581, CVE-2010-1151
Both of these advisories relate to the apache http server, which has nothing to do with the Apache Directory LDAP API.
api-ldap-extras-codec also reports CVE-2015-5349:
api-ldap-extras-codec-2.0.0.AM1.jar (cpe:/a:apache:apache_http_server:2.0.0.am1, cpe:/a:apache:directory_studio:2.0.0.m9, org.apache.directory.api:api-ldap-extras-codec:2.0.0.AM1, cpe:/a:apache:ldap_studio:2.0.0.am1, cpe:/a:net-ldap_project:net-ldap:2.0.0.am1, cpe:/a:apache:directory_ldap_api:2.0.0.am1) : CVE-2015-5349, CVE-2014-3581, CVE-2010-1151
https://nvd.nist.gov/vuln/detail/CVE-2015-5349 refers to Apache Directory Studio, not the ldap API.
The text was updated successfully, but these errors were encountered: