[ https://issues.apache.org/jira/browse/TOMEE-4225?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Richard Zowalla closed TOMEE-4225. ---------------------------------- Fix Version/s: (was: 10.0.0-M1) (was: 9.1.1) Resolution: Fixed > Remove commons-net from TomEE distribution > ------------------------------------------ > > Key: TOMEE-4225 > URL: https://issues.apache.org/jira/browse/TOMEE-4225 > Project: TomEE > Issue Type: Bug > Components: TomEE Core Server > Affects Versions: 9.0.0, 9.1.0 > Reporter: RAJU THANNEERU > Assignee: Richard Zowalla > Priority: Minor > Fix For: 10.0.0 > > Attachments: image-2023-06-16-17-15-55-913.png > > > Vulnerability on Apache commons net version 3.8.0 which is used in TomEE > 9.0.0 and 9.1.0 > [https://nvd.nist.gov/vuln/detail/CVE-2021-37533] > [https://mvnrepository.com/artifact/commons-net/commons-net/3.8.0] > Apache Commons Net 3.9.0 does not have this vulnerability. > [https://mvnrepository.com/artifact/commons-net/commons-net/3.9.0] > !image-2023-06-16-17-15-55-913.png|width=500,height=281! > -- This message was sent by Atlassian Jira (v8.20.10#820010)