You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I use Dapper 2.1.35 in project to connect SQL and depencycheck report raise critical with CVE-2017-10989.
In CVE detail I think that refer about only sqlite database issue. ( refer : https://security-tracker.debian.org/tracker/CVE-2017-10989 )
If we juse use Dapper like a database provider I think vulnerability of database should not raise on database provider or not?
The text was updated successfully, but these errors were encountered:
Package URl
pkg:nuget/[email protected]
CPE
cpe:2.3:a:sqlite:sqlite:::::::: versions up to (including) 3.19.3
CVE
CVE-2017-10989
ODC Integration
None
ODC Version
9.2.0
Description
I use Dapper 2.1.35 in project to connect SQL and depencycheck report raise critical with CVE-2017-10989.
In CVE detail I think that refer about only sqlite database issue. ( refer : https://security-tracker.debian.org/tracker/CVE-2017-10989 )
If we juse use Dapper like a database provider I think vulnerability of database should not raise on database provider or not?
The text was updated successfully, but these errors were encountered: