Vulnerability Details CVE-2022-24329
In JetBrains Kotlin before 1.6.0, it was not possible to lock dependencies for Multiplatform Gradle Projects.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.0%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- https://blog.jetbrains.com
- https://blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html
- https://blog.jetbrains.com
- https://blog.jetbrains.com/blog/2022/02/08/jetbrains-security-bulletin-q4-2021/
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.oracle.com/security-alerts/cpujul2022.html
Products affected by CVE-2022-24329
-
cpe:2.3:a:jetbrains:kotlin:-
-
cpe:2.3:a:jetbrains:kotlin:0.9
-
cpe:2.3:a:jetbrains:kotlin:1.2.70
-
cpe:2.3:a:jetbrains:kotlin:1.3
-
cpe:2.3:a:jetbrains:kotlin:1.3.20
-
cpe:2.3:a:jetbrains:kotlin:1.3.30
-
cpe:2.3:a:jetbrains:kotlin:1.4.0
-
cpe:2.3:a:jetbrains:kotlin:1.4.21
-
cpe:2.3:a:oracle:communications_cloud_native_core_binding_support_function:22.1.3
-
cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.4
-
cpe:2.3:a:oracle:communications_pricing_design_center:12.0.0.5