You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Path to dependency file: /TheWheel.ETL.CyberArk/TheWheel.ETL.CyberArk.csproj
Path to vulnerable library: /ckages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg,/home/wss-scanner/.nuget/packages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg
Path to dependency file: /TheWheel.ETL.CyberArk/TheWheel.ETL.CyberArk.csproj
Path to vulnerable library: /ckages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg,/home/wss-scanner/.nuget/packages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg
mend-bolt-for-githubbot
changed the title
system.text.encodings.web.4.5.0.nupkg: 1 vulnerabilities (highest severity is: 9.8)
system.text.encodings.web.4.5.0.nupkg: 1 vulnerabilities (highest severity is: 8.1)
Mar 24, 2024
Vulnerable Library - system.text.encodings.web.4.5.0.nupkg
Provides types for encoding and escaping strings for use in JavaScript, HyperText Markup Language (H...
Library home page: https://api.nuget.org/packages/system.text.encodings.web.4.5.0.nupkg
Path to dependency file: /TheWheel.ETL.CyberArk/TheWheel.ETL.CyberArk.csproj
Path to vulnerable library: /ckages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg,/home/wss-scanner/.nuget/packages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg
Found in HEAD commit: 4523a90c162a002998acd7d6510bd4bdea60b7e9
Vulnerabilities
**In some cases, Remediation PR cannot be created automatically for a vulnerability despite the availability of remediation
Details
CVE-2021-26701
Vulnerable Library - system.text.encodings.web.4.5.0.nupkg
Provides types for encoding and escaping strings for use in JavaScript, HyperText Markup Language (H...
Library home page: https://api.nuget.org/packages/system.text.encodings.web.4.5.0.nupkg
Path to dependency file: /TheWheel.ETL.CyberArk/TheWheel.ETL.CyberArk.csproj
Path to vulnerable library: /ckages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg,/home/wss-scanner/.nuget/packages/system.text.encodings.web/4.5.0/system.text.encodings.web.4.5.0.nupkg
Dependency Hierarchy:
Found in HEAD commit: 4523a90c162a002998acd7d6510bd4bdea60b7e9
Found in base branch: main
Vulnerability Details
.NET Core Remote Code Execution Vulnerability
Publish Date: 2021-02-25
URL: CVE-2021-26701
CVSS 3 Score Details (8.1)
Base Score Metrics:
Suggested Fix
Type: Upgrade version
Release Date: 2021-02-25
Fix Resolution: System.Text.Encodings.Web - 4.5.1,4.7.2,5.0.1
Step up your Open Source Security Game with Mend here
The text was updated successfully, but these errors were encountered: