Skip to content
This repository has been archived by the owner on Feb 24, 2024. It is now read-only.

[UPDATE] Vulnerable library "apache commons-net" 3.6 -> 3.10.0 #122

Closed
actuallySoheil opened this issue Jan 26, 2024 · 1 comment
Closed

[UPDATE] Vulnerable library "apache commons-net" 3.6 -> 3.10.0 #122

actuallySoheil opened this issue Jan 26, 2024 · 1 comment

Comments

@actuallySoheil
Copy link

https://devhub.checkmarx.com/cve-details/CVE-2021-37533/
@mworzala
Copy link

It's a dependency of Hydrazine, so will go away when that does. Related to #118 and #120.

Also, the vulnerability is irrelevant to Hydrazine which does not use the FTP logic in commons-net

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mworzala @actuallySoheil