Maven package
org.glassfish/jakarta.el
pkg:maven/org.glassfish/jakarta.el
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28170 | — | < 3.0.4 | 3.0.4 | May 26, 2021 | In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid. |
- CVE-2021-28170May 26, 2021affected < 3.0.4fixed 3.0.4
In the Jakarta Expression Language implementation 3.0.3 and earlier, a bug in the ELParserTokenManager enables invalid EL expressions to be evaluated as if they were valid.