Commons IO dependency affected by CVE-2024-47554

Question

ThomasVitale opened this issue a year ago · 1 comments

The spring-shell-core module uses commons-io:commons-io:2.11.0 which is affected by CVE-2024-47554.
The solution is to upgrade to version 2.14+

Answer 1 · 2024-12-10T14:08:20.000Z

Bumped to 2.18.0