[FP]: CVE-2023-5763 Eclipse Expressly #6626

viktorgunnarson · 2024-04-24T11:33:13Z

Package URl

pkg:maven/org.glassfish.expressly/expressly@5.0.0

CPE

cpe:2.3:a:eclipse:glassfish:5.0.0:::::::*

CVE

CVE-2023-5763

ODC Integration

{"label"=>"Maven Plugin"}

ODC Version

9.1.0

Description

The CVE is regarding Glassfish server, not Eclipse Expressly.

github-actions · 2024-04-24T11:34:09Z

Maven Coordinates

<dependency>
   <groupId>org.glassfish.expressly</groupId>
   <artifactId>expressly</artifactId>
   <version>5.0.0</version>
</dependency>

Suppression rule:

<suppress base="true">
   <notes><![CDATA[
   FP per issue #6626
   ]]></notes>
   <packageUrl regex="true">^pkg:maven/org\.glassfish\.expressly/expressly@.*$</packageUrl>
   <cpe>cpe:/a:eclipse:glassfish</cpe>
</suppress>

Link to test results: https://github.com/jeremylong/DependencyCheck/actions/runs/8815841519

aikebah · 2024-04-27T12:29:41Z

approved

github-actions · 2024-04-27T12:30:00Z

Suppress rule has been added to the generatedSuppressions branch.

viktorgunnarson added the FP Report label Apr 24, 2024

github-actions bot added the maven changes to the maven plugin label Apr 24, 2024

github-actions bot closed this as completed Apr 27, 2024

github-actions bot added a commit that referenced this issue Apr 27, 2024

fix(fp): FP per issue #6626

36d5de9

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FP]: CVE-2023-5763 Eclipse Expressly #6626

[FP]: CVE-2023-5763 Eclipse Expressly #6626

viktorgunnarson commented Apr 24, 2024

github-actions bot commented Apr 24, 2024

aikebah commented Apr 27, 2024

github-actions bot commented Apr 27, 2024

[FP]: CVE-2023-5763 Eclipse Expressly #6626

[FP]: CVE-2023-5763 Eclipse Expressly #6626

Comments

viktorgunnarson commented Apr 24, 2024

Package URl

CPE

CVE

ODC Integration

ODC Version

Description

github-actions bot commented Apr 24, 2024

aikebah commented Apr 27, 2024

github-actions bot commented Apr 27, 2024