Accepted Vulnerabilities
Vulnerabilities that have been accepted across the whole organization
| CVE | Risk | Asset | Accepted at | Automatically reopened for revalidation | Justification |
|---|---|---|---|---|---|
| CVE-2024-6119 | 4.25 | devguard | Tue Dec 03 2024 | Wed Apr 02 2025 | You are right. We are using a reverse proxy. Devguard starts with plain http handler. Using a Service-Mesh should be encouraged. |
| CVE-2024-28863 | 3 | devguard-web | Tue Dec 03 2024 | Wed Apr 02 2025 | We cannot update this dependency. It is deep down in nodejs. Since we are not generating any subfolders or untaring anything, this can be accepted. |