The code has been removed or tree-shaked.
The vulnerable code is not invoked at runtime.
An undefined impact analysis justification
Attacks are blocked at physical, logical, or network perimeter.
Exploits are prevented at runtime.
Exploitability requires a compiler flag to be set/unset.
Preventative measures have been implemented that reduce the likelihood and/or impact of the vulnerability.
Exploitability requires a configurable option to be set/unset.
Exploitability requires a dependency that is not present.
Exploitability requires a certain environment which is not present.
Generated
from enum cyclonedx.v1_5.ImpactAnalysisJustification