The spring-boot-dependencies are set to version 2.7.14 and with that the vulnerable component spring-security-config is upgraded to the non-vulnerable version 5.7.10.
As spring security 5.7.10 requires spring framework version 5.3.29+ , the spring framework version is also updated to 5.3.29.
This PR is in the context of https://cumulocity.atlassian.net/browse/MTM-56458 to address CVE-2023-34034
The spring-boot-dependencies are set to version 2.7.14 and with that the vulnerable component spring-security-config is upgraded to the non-vulnerable version 5.7.10.
As spring security 5.7.10 requires spring framework version 5.3.29+ , the spring framework version is also updated to 5.3.29.