Fixed Common Vulnerabilities and Exposures 7.2.18
Common Vulnerabilities and Exposures (CVE) that is fixed in this release.
- CVE-2023-44487 - HTTP/2 Rapid Reset Vulnerability
- CVE-2023-46120 - Netty
- CVE-2023-36478 - Eclipse Jetty
- CVE-2023-26048 - Eclipse Jetty
- CVE-2023-26049 - Eclipse Jetty
- CVE-2023-40167 - Eclipse Jetty
- CVE-2023-36479 - Eclipse Jetty
- CVE-2023-41900 - Eclipse Jetty
- CVE-2023-38493 - Armeria
- CVE-2021-31684 - Json-smart
- CVE-2022-41881 - Netty
- CVE-2023-34462 - Netty
- CVE-2022-30187 - Azure-storage-blob, Azure-storage-queue
- CVE-2023-24998 - Commons-fileupload
- CVE-2019-10219 - Hibernate-validator
- CVE-2020-10693 - Hibernate-validator
- CVE-2019-16728 - DOMPurify
- CVE-2019-25155 - DOMPurify
- CVE-2023-37895 - Jackrabbit
- CVE-2021-33813 - Jdom
- CVE-2022-24823 - Netty
- CVE-2023-31582 - Jose4j
- CVE-2022-45688 - org.json
- CVE-2023-5072 - org.json
- CVE-2023-25613 - Apache Kerby
- CVE-2020-28458 - Datatables
- CVE-2019-20444 - Netty
- CVE-2019-20445 - Netty
- CVE-2019-16869 - Netty
- CVE-2021-37136 - Netty
- CVE-2021-37137 - Netty
- CVE-2021-43797 - Netty
- CVE-2021-21409 - Netty
- CVE-2021-21290 - Netty
- CVE-2023-34468 - Apache Nifi
- CVE-2023-36542 - Apache Nifi
- CVE-2023-40037 - Apache Nifi
- CVE-2022-41917 - Opensearch
- CVE-2023-34054 - Reactor-netty
- CVE-2023-34062 - Reactor-netty
- CVE-2022-31684 - Reactor-netty
- CVE-2017-15288 - Scala-lang
- CVE-2023-34478 - Apache Shiro
- CVE-2023-20860 - Spring Framework
- CVE-2023-20861 - Spring Framework
- CVE-2023-20863 - Spring Framework
- CVE-2023-34034 - Spring Security
- CVE-2023-20862 - Spring Security
- CVE-2023-32697 - Sqlite-jdbc
- CVE-2023-41080 - Apache Tomcat
- CVE-2023-42794 - Apache Tomcat
- CVE-2023-42795 - Apache Tomcat
- CVE-2023-45648 - Apache Tomcat
- CVE-2023-4807 - Openssl
- CVE-2023-2650 - Openssl
- CVE-2023-3817 - Openssl
- CVE-2023-5678 - Openssl
- CVE-2022-45685 - Jettison
- CVE-2022-45693 - Jettison
- CVE-2023-1436 - Jettison
- CVE-2021-21295 - Netty
- CVE-2023-46750 - Apache Shiro
- CVE-2022-46751 - Apache Ivy
