[JOC-1129] Update xmldom from 0.6.0 to >0.7.0 due to 3rd party vulnerability issue CVE-2021-32796 - SOS JIRA

XML

Word

Printable

Details

Type: Fix
Status: Released (View Workflow)
Priority: Minor
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.0.0
Component/s: None
Labels:
None

CVE-ID:
CVE-2021-32796

Description

Current Situation

Currently JS7 JOC Cockpit use xmldom version 0.6.0
a vulnerability affects this version,
- see https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-32796

Desired Behavior

Due to a vulnerability Issue of older xmldom releases the JS7 JOC Cockpit should use the current version 0.7.0 that fixes the issues.

Attachments

Activity

People

Assignee:: Sourabh Agrawal

Reporter:: Santiago Aucejo Petzoldt

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 13 August 2021 07:03

Updated:: 22 September 2021 17:34

Resolved:: 23 August 2021 08:45