virus logo DevSecOps

cn.hutool/hutool-core - critical issue in <=5.8.21 - CVE-2023-42277

Impact logoDescription

Package cn.hutool/hutool-core which comes from package manager maven is found vulnerable with critical severity, please avoid version <=5.8.21 in order to mitigate.

Recommended Actions

Avoid using versions <=5.8.21 for package cn.hutool/hutool-core

Coverage

FortiDevSec 24.3 or later

Version Updates

Date Version Status Detail
2024-09-30 24.30000
New
 None
2023-10-10 23.40000
New
 None
ID 19921
CVE ID
CWE ID CWE-120
OWASP
Package Source maven
Affected Language Java
Date Feb 16, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon