Supported CVEs for reachability analysis
Supported
Currently, Fluid Attacks detects when software effectively calls known vulnerable functions reported in the CVE entries shown in the following table, where they are classified by the programming language in which the functions are written:
|
Language
|
CVE IDs
|
Number of CVEs
|
|
C#
|
2
|
|
|
Dart
|
1
|
|
|
Java
|
3
|
|
|
JavaScript
|
|
37
|
|
PHP
|
1
|
|
|
Python
|
5
|
|
|
TypeScript
|
|
37
|
|
|
Total CVEs
|
49
|
Note: The total CVEs count is the sum of unique CVEs.
Unsupported
Fluid Attacks' reachability analysis does not support any CVE corresponding to vulnerabilities in software libraries not listed above.
Free trial
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.