Can you please find out the component? Il giorno lun 22 giu 2020 alle ore 07:32 Vikas Jaiswal <[email protected]> ha scritto:
> If you include the camel parent pom struts component gets downloaded. Not > sure which component is using struts. > > Regards, > Vikas > > -----Original Message----- > From: Andrea Cosentino [mailto:[email protected]] > Sent: 22 June 2020 11:00 > To: [email protected] > Subject: Re: camel release 3.4.0 - struts-core-1.3.8.jar > > CAUTION: DO NOT click links, open attachments, or provide sensitive > information if the sender is unknown > > What component? > > Il giorno lun 22 giu 2020 alle ore 07:27 Vikas Jaiswal < > [email protected]> > ha scritto: > > > Hi, > > One of the camel components is downloading a very old struts version > > 1.3.8.jar . This has got security vulnerabilities. Can this please be > > updated? > > > > > https://www.cvedetails.com/vulnerability-list/vendor_id-45/product_id-6117/version_id-164423/Apache-Struts-1.3.8.html > > Regards, > > Vikas > > > Help reduce your carbon footprint | Think before you print. This e-mail > and any attachments are confidential and intended solely for the addressee > and may also be privileged or exempt from disclosure under applicable law. > If you are not the addressee, or have received this e-mail in error, please > notify the sender immediately, delete it from your system and do not copy, > disclose or otherwise act upon any part of this e-mail or its attachments. > Any opinion or other information in this e-mail or its attachments that > does not relate to the business of the Saksoft Group is personal to the > sender and is not given or endorsed by the Saksoft Group. Any data that you > provide within the context of your email you will have done so with your > own consent and GDPR controls will be applied whilst the data is controlled > or processed within the Saksoft Group. > > > > >
