DevSecOps

edu.stanford.nlp/stanford-parser - critical issue in <=3.9.2 - CVE-2023-39020

Description

Package edu.stanford.nlp/stanford-parser which comes from package manager maven is found vulnerable with critical severity, please avoid version <=3.9.2 in order to mitigate.

Recommended Actions

Avoid using versions <=3.9.2 for package edu.stanford.nlp/stanford-parser

Coverage

FortiDevSec 24.3 or later

Version Updates

Date	Version	Status	Detail
2024-09-30	24.30000	New	None
2023-10-10	23.40000	New	None

ID	19373
CVE ID
CWE ID	CWE-94
OWASP	A03:2021
Package Source	maven
Affected Language	Java
Date	Feb 16, 2024
Risk

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

DevSecOps

edu.stanford.nlp/stanford-parser - critical issue in <=3.9.2 - CVE-2023-39020

Description

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

DevSecOps

edu.stanford.nlp/stanford-parser - critical issue in <=3.9.2 - CVE-2023-39020

Description

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center