CVE-2017-11317 and CVE-2017-9248 not detected for Telerik.Web.UI 2014

**Describe the bug**
Telerik.Web.UI before R1 2017 has Vulnerabilities CVE-2017-11317 and CVE-2017-9248 but not detected by dependency-check.

**Version of dependency-check used**
7.0.4

**Log file**
[log](https://gist.github.com/aguacongas/501204f94f0d23aff01fe8208b4fe171)

**To Reproduce**
Steps to reproduce the behavior:
1. [Create a Telerik trial account if you don't have one](https://www.telerik.com/login/ui-for-asp.net-mvc?ReturnUrl=https%3a%2f%2fwww.telerik.com%2ftry%2fui-for-asp.net-mvc#register)
2. [Setup nuget CLI with your Telerik account](https://docs.telerik.com/aspnet-mvc/getting-started/installation/nuget-install#setup-with-nuget-cli)
3. Download Telerik.Web.UI with the nuget command : `nuget install Telerik.Web.UI -version 2014.1.225.45`
4. Scan the nuget package : `dependency-check.bat --scan .\Telerik.Web.UI.2014.1.225.45\*.*`

**Expected behavior**
Report should contains Telerik.Web.UI vulnerabilities


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVE-2017-11317 and CVE-2017-9248 not detected for Telerik.Web.UI 2014 #4320

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE-2017-11317 and CVE-2017-9248 not detected for Telerik.Web.UI 2014 #4320

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions