virus logo DevSecOps

com.alipay.sofa/rpc-sofa-boot-starter - critical issue in <5.12.0 - CVE-2024-23636

Impact logoDescription

Package com.alipay.sofa/rpc-sofa-boot-starter which comes from package manager maven is found vulnerable with critical severity, please avoid version <5.12.0 in order to mitigate.

Recommended Actions

Avoid using versions <5.12.0 for package com.alipay.sofa/rpc-sofa-boot-starter

Coverage

FortiDevSec 24.3 or later

Version Updates

Date Version Status Detail
2024-09-30 24.30000
New
 None
ID 21260
CVE ID
CWE ID CWE-502
OWASP A08:2021
Package Source maven
Affected Language Java
Date Feb 16, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon