Skip to main content

Dependency Track

2 CVEs product

Monthly

CVE-2022-39351 MEDIUM This Month

Dependency-Track is a Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dependency Track
NVD GitHub
CVSS 3.1
4.4
EPSS
0.2%
CVE-2019-1020007 MEDIUM This Month

Dependency-Track before 3.5.1 allows XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dependency Track
NVD GitHub
CVSS 3.0
5.4
EPSS
0.6%
EPSS 0% CVSS 4.4
MEDIUM This Month

Dependency-Track is a Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Dependency Track
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM This Month

Dependency-Track before 3.5.1 allows XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Dependency Track
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy