Open HelloMavenEco opened 2 years ago
Hi! We spot a vulnerable dependency in your project, which might threaten your software. And we found that the vulnerable function of this CVE can be easily accessed from your software.
com.github.hermannpencole.nifi.swagger.XML:deserialize(java.lang.String,java.lang.reflect.Type) ⬇️ com.fasterxml.jackson.dataformat.xml.XmlMapper:<init>() ⬇️ .... ⬇️ com.fasterxml.jackson.dataformat.xml.XmlFactory:<init>(com.fasterxml.jackson.core.ObjectCodec,int,int,javax.xml.stream.XMLInputFactory,javax.xml.stream.XMLOutputFactory,java.lang.String)
Therefore, maybe you need to upgrade this dependency. Hope this can help you! 😄
Hi! We spot a vulnerable dependency in your project, which might threaten your software. And we found that the vulnerable function of this CVE can be easily accessed from your software.
Therefore, maybe you need to upgrade this dependency. Hope this can help you! 😄