You are viewing the documentation for Blueriq 14. Documentation for other versions is available in our documentation directory.

Identifier

Component

Issue

Solution

BQ-22351

 

A CVE was detected on the spring framework library for version lower than 6.1.3, 6.0.16 and 5.3.31. See [CVE-2024-22243: Spring Framework URL Parsing with Host Validation

We've updated our latest components to spring-boot 3.1.9, which contains spring framework 6.0.17. Older components are updated to spring framework 5.3.32

BQ-22253

 

CVE-PRISMA-2023-0067 was detected on the jackson-core library

fixed by upgrading the jackson dependencies to 2.15.3
  • No labels

Didn't find the answer you were looking for? Try the advanced search