-
Task
-
Resolution: Done
-
Medium
-
None
Version upgrade needed for vulnerability addressal.
Status | Priority | Component name and version | Threat level | Recommended version | Project’s assessment |
1 | ch.qos.logback : logback-core : 1.3.0-alpha0 | 8.6 6.6 5.9 |
1.2.11 | alpha version is vulnerable, downgrade to 1.2.11 | |
1 | com.fasterxml.jackson.core : jackson-databind : 2.11.0 | 7.5 7.5 |
2.13.3 | ||
1 | com.google.code.gson : gson : 2.8.5 | 7.5 |
2.9.0 | ||
1 | org.json : json : 20160810 | 7.5 | 20220320 | ||
2 | io.springfox : springfox-swagger2 : 3.0.0 | 5.3 |
3.0.0 | SECCOM: 3.0. is the latest version | |
2 | org.springframework.security : spring-security-core : 5.2.1.RELEASE | 5.7.1 | |||
- blocks
-
DCAEGEN2-3196 PACKAGES UPGRADES IN DIRECT DEPENDENCIES FOR KOHN
- Closed
- clones
-
DCAEGEN2-3210 dcaegen2-analytics-tca-gen2 vulnerability updates
- Closed