Lucene search

FedoraFEDORA:D33CC203D553

HistoryMar 07, 2024 - 10:32 p.m.

[SECURITY] Fedora 40 Update: apache-ivy-2.5.2-4.fc40

2024-03-0722:32:55

lists.fedoraproject.org

apache ivy

project management

dependency tracking

apache ant

unix

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

Low

EPSS

Percentile

15.5%

JSON

Apache Ivy is a tool for managing (recording, tracking, resolving and reporting) project dependencies. It is designed as process agnostic and is not tied to any methodology or structure. while available as a standalone tool, Apache Ivy works particularly well with Apache Ant providing a number of powerful Ant tasks ranging from dependency resolution to dependency reporting and publication.

OSVersionArchitecturePackageVersionFilename
Fedora40anyapache-ivy< 2.5.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	40	any	apache-ivy	< 2.5.2	UNKNOWN

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

6.9

Confidence

Low

EPSS

Percentile

15.5%

JSON

Related for FEDORA:D33CC203D553