ThreeTen Backport is vulnerable to NULL Pointer Dereference. The vulnerability is due to missing null value checks in the org.threeten.bp.LocalDate::compareTo(ChronoLocalDate)
method, resulting in a NullPointerException if an attacker can pass a null value to the method.
CPE | Name | Operator | Version |
---|---|---|---|
threeten backport | le | 1.6.9 | |
threeten backport | le | 1.6.9 |