Vulnerabilities > CVE-2022-24329 - Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
LOW Availability impact
NONE Summary
In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1744 | |
Application | 3 |
Common Weakness Enumeration (CWE)
References
- https://blog.jetbrains.com
- https://blog.jetbrains.com
- https://blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/
- https://blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html