Open Source Software
Is CVE-2022-42889 Important to You? How long does it take to find out?
Is CVE-2022-42889 important to you? You have no idea unless you know this CVE is an Apache Commons Text code injection vulnerability. And…you would only care if you had Apache in your IT environment. And…given the lack of visibility into your open-source software supply chain, that is hard to know. Figuring this out manually would…
Read More