justind1995
commented
1 year ago this is a duplicate of this https://github.com/sonatype-nexus-community/codetocloud-workshop/issues/22
the issue linked above covers all dependency issues raised in report
Open justind1995 opened 1 year ago
justind1995
commented
1 year ago this is a duplicate of this https://github.com/sonatype-nexus-community/codetocloud-workshop/issues/22
the issue linked above covers all dependency issues raised in report
Summary
Multiple CVEs open for Xstream, including http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7285
Upgrading to 1.4.20 will cause breaking changes that will need to be addressed.