Hibernate has a dependency on plexus-utils:3.0.1 that is vulnerable to CVE-2017-1000487 with a CVSS of 7.5

Environment

None

Activity

Show:
Sebastian Nohn
June 26, 2019, 11:20 AM

MR:

Assignee

Sebastian Nohn

Reporter

Sebastian Nohn

Fix versions

Labels

None

backPortable

Backport?

Suitable for new contributors

None

Requires Release Note

None

backportDecision

None

Components

Affects versions

Priority

Major
Configure