Skip to content

Add Newtonsoft.Json CVE-2024-21907 references#8579

Draft
cookesan wants to merge 3 commits into
github:cookesan/advisory-improvement-8579from
cookesan:newtonsoft-json-21907-nvd-reference
Draft

Add Newtonsoft.Json CVE-2024-21907 references#8579
cookesan wants to merge 3 commits into
github:cookesan/advisory-improvement-8579from
cookesan:newtonsoft-json-21907-nvd-reference

Conversation

@cookesan

@cookesan cookesan commented Jul 7, 2026

Copy link
Copy Markdown

Adds Newtonsoft.Json 13.0.1 release, NuGet package, VulnCheck, and NVD references for CVE-2024-21907 to GHSA-5crp-9r3c-p9vr.

Audit refresh, July 8, 2026:

  • Confirmed GHSA-5crp-9r3c-p9vr maps to CVE-2024-21907, and NVD has a record for CVE-2024-21907.
  • Confirmed the upstream Newtonsoft.Json 13.0.1 release tag, NuGet package page, and VulnCheck advisory resolve.
  • Local checks passed: one advisory JSON file changed in the PR diff, JSON parses, git diff --check passes, and the worktree is clean.

@github-actions github-actions Bot changed the base branch from main to cookesan/advisory-improvement-8579 July 7, 2026 10:47
@cookesan cookesan changed the title Add Newtonsoft.Json NVD reference Add Newtonsoft.Json CVE-2024-21907 references Jul 7, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant