javascript – jQuery vulnerability (NVD CVE-2007-2379) – ‘JSON data protection scheme’ – solution in 2022?

This is basically the same question here (I don’t know how to avoid referencing it)
About CVE-2007-2379

The reason I ask this again is since when I searched for a solution for this I found a release note from ‘January 2022’ of Data Center Expert 7.9.0

Software vulnerabilities fixed in DCE 7.9.0

  • CVE-2007-2379 – JSON data protection scheme

I couldn’t find any info on what is meant by “JSON data protection scheme” or any hint on how it was fixed

So my actual question is does anyone have any idea on what changed since 2010 that you can fix this issue and how to?

P.S: We are using jQuery 3.6 and scanning using Checkmarx’s CxSCA this still appears as a security risk

Read more here: Source link