artifactory-client-java icon indicating copy to clipboard operation
artifactory-client-java copied to clipboard

Published 20 hours ago verified publisher icon jfrog

False positive on CVE-2020-16156

Open karthickm512 opened this issue 2 years ago • 0 comments

Describe the bug XRay identifies all the perl bundles as https://nvd.nist.gov/vuln/detail/CVE-2020-16156

To Reproduce Place perl-base:0:5.26 and scan with xray

Expected behavior This 3pp should not have been reported as vulnerable

Versions

  • Artifactory Java Client version: 3.503
  • Operating system: SLES 15 SP3

karthickm512 avatar Jul 15 '22 06:07 karthickm512