Announcement

Collapse
No announcement yet.
X
Collapse
  • Page of 1
  • Filter
  • Time
Clear All
new posts
Previous template Next
    #1

    Inquiry on jQuery (3.4.1) Vulnerability in SmartClient v12.0

    Hi,

    We are currently utilizing SmartClient Version: v12.0p_2020-08-08/PowerEdition Deployment and have encountered a vulnerability in jQuery (Please check the attached image for more information), which is a dependency in our Smartclient framework. We understand that maintaining security is paramount, and thus, we are reaching out for your expertise in addressing this issue.

    Could you please provide guidance on how to mitigate this vulnerability?
    Attached Files
    Tags: None
    #2
    Lots of problems here:

    1) this is not a real vulnerability. It is a potential vulnerability if you misuse JQuery. It's further not a real vulnerability even then, as JQuery runs in the browser, not on the server.

    Note that the vulnerability is being "reanalyzed". That's most likely code for "this is going to be rejected"

    2) this has to do with JQuery, which is not a dependency of SmartClient. It's something you chose to use in your particular app

    There is no action to take here, and if there were, it wouldn't be Isomorphic that needs to do something.

    All we can recommend is that we do offer Consulting services in the area of web security, and you should probably take advantage of those services, as you seem to be a bit out of your depth in understanding CVEs and vulnerabilities.

    Comment

    Previous template Next
    Working...
    X