[Snyk] Fix for 65 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • pom.xml

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1009829	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1047324	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052449	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1052450	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1054588	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056414	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056416	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056417	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056418	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056419	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056420	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056421	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056424	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056425	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056426	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1056427	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-1061931	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-174736	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-31507	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Denial of Service (DoS) SNYK-JAVA-COMFASTERXMLJACKSONCORE-31519	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-31573	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32043	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32044	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-32111	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	834/1000 Why? Mature exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Mature
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-455617	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467014	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	791/1000 Why? Mature exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467015	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Mature
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-467016	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469674	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-469676	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-471943	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-472980	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-540500	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-548451	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559094	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-559106	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560762	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-560766	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561362	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561373	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561585	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561586	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-561587	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564887	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-564888	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-570625	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572300	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572314	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-572316	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	726/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-608664	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	Proof of Concept
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72445	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72446	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72447	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72448	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72450	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72451	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72882	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72883	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	630/1000 Why? Has a fix available, CVSS 8.1	Deserialization of Untrusted Data SNYK-JAVA-COMFASTERXMLJACKSONCORE-72884	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	No	No Known Exploit
	596/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.5	Information Disclosure SNYK-JAVA-COMGOOGLEGUAVA-1015415	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	Yes	Proof of Concept
	509/1000 Why? Has a fix available, CVSS 5.9	Deserialization of Untrusted Data SNYK-JAVA-COMGOOGLEGUAVA-32236	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	Yes	No Known Exploit
	651/1000 Why? Mature exploit, Has a fix available, CVSS 5.3	Directory Traversal SNYK-JAVA-COMMONSIO-1277109	net.sourceforge.owlapi:owlapi-distribution: 4.5.6 -> 5.1.18	Yes	Mature

(*) Note that the real score may have changed since the PR was raised.

Vulnerabilities that could not be fixed

• Upgrade:
  • Could not upgrade commons-io:commons-io@2.5 to commons-io:commons-io@2.7; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/net/sourceforge/owlapi/owlapi-parent/4.5.6/owlapi-parent-4.5.6.pom

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic