Vulnerabilities identified from security scans

K To shared this question 5 days ago
In Progress

Our security scanner has identified a list of vulnerabilities with the libraries used by Yellowfin 9.7.1.1. Looking at your security announcements and published vulnerabilities with CVEs could not identify if these were impacts or not with Yellowfin. We've tried to remove false positives from the list and at this stage are focusing on the critical and high items and given your security announcements expect that you've checked these and we just need advice that Yellowfin is not affected by them or if affected a patch is planned.

Comments (2)

photo
1

Hi Kent,

I'll take a look into the attached document and get back to you with an update once I've gone through the list.

Kind regards,

Chris

photo
1

Hi Kent,

Please see the attached documents with my notes appended.

Kind regards,

Chris

photo
1

Chris,

Appreciate the review and notes, will review and revert back accordingly.

photo