[ https://issues.apache.org/jira/browse/IGNITE-8472?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Harendra Rai updated IGNITE-8472: --------------------------------- Description: There are two vulnerabilities in the latest 2.3.0 version. # commons-beanutils-1.8.3.jar. Here is the vulnerability id CVE-2014-0114 : [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114] *Resolution to this issue is*: Upgrade Commons BeanUtils to the latest version >= commons-beanutils-1.9.2 # commons-codec-1.6.jar: Here is the vulnerability detail https://issues.apache.org/jira/browse/CODEC-96 *Resolution to this issue is:* To upgrade to the latest available Version 1.11 was: There are two vulnerabilities in the latest 2.3.0 version. # commons-beanutils-1.8.3.jar. Here is the vulnerability id CVE-2014-0114 : [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114] *Resolution to this issue is*: All Commons BeanUtils users should upgrade to the latest version >= commons-beanutils-1.9.2 # commons-codec-1.6.jar: Here is the vulnerability detail https://issues.apache.org/jira/browse/CODEC-96 *Resolution to this issue is:* To upgrade to the latest available Version 1.11 > Apache ignite for .NET has security vulnerabilities > --------------------------------------------------- > > Key: IGNITE-8472 > URL: https://issues.apache.org/jira/browse/IGNITE-8472 > Project: Ignite > Issue Type: Bug > Components: security > Affects Versions: 2.4 > Reporter: Harendra Rai > Priority: Critical > Fix For: 2.5 > > > There are two vulnerabilities in the latest 2.3.0 version. > # commons-beanutils-1.8.3.jar. Here is the vulnerability id CVE-2014-0114 : > [https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114] > *Resolution to this issue is*: Upgrade Commons BeanUtils to the latest > version >= commons-beanutils-1.9.2 > # commons-codec-1.6.jar: Here is the vulnerability detail > https://issues.apache.org/jira/browse/CODEC-96 > *Resolution to this issue is:* To upgrade to the latest available Version 1.11 -- This message was sent by Atlassian JIRA (v7.6.3#76005)