[ https://issues.apache.org/jira/browse/THRIFT-5427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17355269#comment-17355269 ]
Hitendra Singh Hada commented on THRIFT-5427: --------------------------------------------- Hi @here Could someone please take a look. Our application is using thrift dependency and we require to resolve it to follow some compliance agreements. Thanks. > Thrift v0.14.1 contains vulnerability of `ws` module > ---------------------------------------------------- > > Key: THRIFT-5427 > URL: https://issues.apache.org/jira/browse/THRIFT-5427 > Project: Thrift > Issue Type: Bug > Environment: Production > Reporter: Hitendra Singh Hada > Priority: Major > > Currently thrift v0.14.1 contains dependecy of `ws` module v5.2.2 which is > vulnerable. To fix the vulnerability you need to update `ws` module with > version 7.4.6. Please have a look and advise ETA. -- This message was sent by Atlassian Jira (v8.3.4#803005)