Skip to content

EY COM Security Report | Netcentric Affected Libraries #890

Description

@GulshanKumar-JSR

Hi Team,

I hope you are doing well. I wanted to reach out regarding some specific issues that were highlighted by the Adobe Team as part of the recent Security Health report. These issues have been outlined in below screenshot, and I believe it’s important for us to address them promptly to ensure our security standards remain robust.

Could you please review the points raised and share your feedback or any updates related to these concerns? Your insights and responses will help us take the necessary steps to resolve these issues efficiently. If you need any further details or clarification on the items mentioned, please let me know.

Looking forward to your response and thank you in advance for your attention to these matters.

Issue 1:
Image

Related Links -

https://owasp.org/Top10/2025/A03_2025-Software_Supply_Chain_Failures/
https://nvd.nist.gov/vuln/detail/CVE-2025-24813
https://nvd.nist.gov/vuln/detail/CVE-2024-50379
https://nvd.nist.gov/vuln/detail/CVE-2024-52316
https://nvd.nist.gov/vuln/detail/CVE-2024-56337
https://nvd.nist.gov/vuln/detail/CVE-2025-31651

Issue 2:
Image

Related Links -

https://owasp.org/Top10/2025/A02_2025-Security_Misconfiguration/

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions