Dependency upgrade for vertx to 4.5.3 (CVE-2024-1023)

Question

Dependency upgrade for vertx to 4.5.3 (CVE-2024-1023)

mdmm13 opened this issue 9 months ago · 1 comments

Snyk highlights the recent CVE-2024-1023 DoS vulnerability introduced via the arangodb-spring/java driver's use of vertx. Kindly request the dependency upgrade to 4.5.2 or 4.5.3 to close this given the risk profile.

Answer 1 · 2024-02-16T09:43:37.000Z

Fixed, thanks.