search

OxalisCommunity / Oxalis-AS4

PEPPOL AS4 pMode plugin for Oxalis
32 stars 25 forks source link

Upgrade org.apache.cxf:cxf-rt-transports-http to version 3.3.8, 3.4.1 or higher to get rid of security vulnerability [CVE-2020-13954, CWE-79] #163

Closed aaron-kumar closed 2 years ago

aaron-kumar commented 3 years ago

SAST tool reported vulnerability for library : cxf-rt-transports-http

network.oxalis:oxalis-as4@5.0.1 ---org.apache.cxf:cxf-rt-transports-http@3.3.6

Library "org.apache.cxf:cxf-rt-transports-http" need to upgrade to version 3.3.8, 3.4.1 or higher

aaron-kumar commented 2 years ago

Fixed in 739a7e08e87c823bfa77cd60e3fbcd9da1e689ba