-
Bug
-
Resolution: Done
-
Medium
-
Dublin Release
-
Frankfurt Sp2 : 11/25 - 1/17
hibernate-validator version prior to 5.3.6.FINAL are vulnerable to CVE-2017-7536
Note: this dependency is inherited from spring-boot-starter-web version 1.5.16.VERSION. This is corrected in the latest spring boot 1.5 version (1.5.19.VERSION), which depends on version 5.3.6.FINAL
- is cloned by
-
SDNC-611 CVE-2017-7536 - hibernate-validator needs to be upgraded to version >= 5.3.6.Final
- Closed