-
Bug
-
Resolution: Done
-
Medium
-
Dublin Release
-
SDNC Dublin Spr 3 3/11 - 3/29, SDNC Fr Sp2:11/23-12/13
hibernate-validator version prior to 5.3.6.FINAL are vulnerable to CVE-2017-7536
Note: this dependency is inherited from spring-boot-starter-web version 1.5.16.VERSION. This is corrected in the latest spring boot 1.5 version (1.5.19.VERSION), which depends on version 5.3.6.FINAL