AZL-25952 — Vulnetix

AZL-25952 PUBLISHED CVSS 3.299999952316284 LOW

CVE-2020-8908 affecting package guava for versions less than 25.0-7

Risk Scores

CVSS 3.1

3.299999952316284

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Products

Vendor	Product	Versions
Azure Linux:2	guava	0, 0

Exploit Intelligence

ScanOssFunTest.kt (github-poc)
druid-612f0710.json (github-poc)
pom.xml (github-poc)
suppression.xml (github-poc)
dependency-check-suppression.xml (github-poc)
dependency-check-suppressions.xml (github-poc)

Timeline

Dec 10, 2020 CVE Published
Apr 21, 2026 CVE Updated

References

https://nvd.nist.gov/vuln/detail/CVE-2020-8908 url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›