How many CVEs does owasp dependency-check have?

owasp dependency-check has 2 published CVE records since 2018.

How many owasp dependency-check CVEs are in CISA KEV?

None of owasp dependency-check's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for owasp dependency-check vulnerabilities?

Yes — 1 of owasp dependency-check's CVEs have a known public exploit.

Which versions of owasp dependency-check are affected?

5 distinct owasp dependency-check versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in owasp dependency-check CVEs?

owasp dependency-check's CVEs most often map to these CWE weakness types: CWE-532 (Insertion of Sensitive Information into Log File).

What is the average severity of owasp dependency-check CVEs?

The average CVSS base score across owasp dependency-check's scored CVEs is 5.3.

owasp dependency-check Vulnerabilities: CVEs, CISA KEV & Security Advisories

Severity and exploitation

How the CVSS severity of owasp dependency-check's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High0

Medium1

Low0

1 additional CVE has no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

None of owasp dependency-check's CVEs are currently listed in CISA's KEV catalog.

Public exploits

One of owasp dependency-check's CVEs has a known public exploit available.

Affected versions and CVEs

Browse every owasp dependency-check version named in a CVE, then pick one to see only the CVEs that affect it.

Version ranges

< 3.2.01 CVE
9.0.0 <= v < 9.0.61 CVE
9.0.0 <= v <= 9.0.51 CVE

Fixed in

3.2.01 CVE
9.0.61 CVE

Find a version

2 CVEs

Sort

DependencyCheck Debug Mode Logging of NVD API Key
CVE-2024-23686
Public exploit
Patch
CWE-532
Medium · CVSS 5.3
EPSS 0.7% (71th pct)2024-01-19
Vulnerability · 2018-06-07
CVE-2018-12036
Patch
Unscored
EPSS 0.2% (39th pct)2018-06-07

Severity and exploitation

Affected versions and CVEs

Version ranges

Fixed in

owasp dependency-check Vulnerabilities

Overview

Severity and exploitation

Affected versions and CVEs

Version ranges

Fixed in

Common weakness types

Disclosure activity by year

Other owasp products

Frequently asked questions

How many CVEs does owasp dependency-check have?

How many owasp dependency-check CVEs are in CISA KEV?

Are there public exploits for owasp dependency-check vulnerabilities?

Which versions of owasp dependency-check are affected?

What are the most common weakness types in owasp dependency-check CVEs?

What is the average severity of owasp dependency-check CVEs?

References

Track owasp dependency-check vulnerabilities