CVE-2022-24329

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions JetBrains Kotlin versions prior to 1.6.0

Description The issue concerns the inability to lock dependencies for Multiplatform Gradle Projects in JetBrains Kotlin. This could potentially lead to unstable project configurations due to uncontrolled updates of dependencies.

Recommendations For versions prior to 1.6.0, update to version 1.6.0 or later to resolve the issue.

Fix

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-667CWE-829

Related Identifiers

CVE-2022-24329

GHSA-2QP4-G3Q3-F92W

Affected Products

Jetbrains Kotlin

CVE-2022-24329

Weakness Enumeration

Related Identifiers

Affected Products

References · 16