Vulnerabilities > CVE-2022-24329 - Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

NVD

Published: 2022-02-25

Updated: 2024-10-29

Summary

In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects.

Part	Description	Count
Application	Jetbrains Jetbrains Kotlin 0.9 Jetbrains Kotlin 1.2.70 Jetbrains Kotlin 1.3 Jetbrains Kotlin 1.3.20 Jetbrains Kotlin 1.3.30 Jetbrains Kotlin 1.4.0 Jetbrains Kotlin 1.4.21	1744
Application	Oracle Oracle Communications Pricing Design Center 12.0.0.4 Oracle Communications Pricing Design Center 12.0.0.5 Oracle Communications Cloud Native Core Binding Support Function 22.1.3	3