LF CLM report identified a vulnerability in the flowing dependency:

group: org.hibernate

Artifact: hibernate-validator

this dependency was identified in:

Dependency org.hibernate:hibernate-validator:jar:5.3.3.Final located at Module org.onap.sdc.sdc-workflow-designer:workflow-designer-be:jar:1.3.0-SNAPSHOT

the closest version with a fix is 5.3.6.Final