commons-jxpath 1.3 is also getting flagged for CVE-2022-401 <https://security.snyk.io/vuln/SNYK-JAVA-COMMONSJXPATH-3040994>59.
On Fri, Jun 30, 2023 at 6:28 PM Debraj Manna <subharaj.ma...@gmail.com> wrote: > Hi > > We have been flagged for CVE-2022-401600 > <https://security.snyk.io/vuln/SNYK-JAVA-COMMONSJXPATH-3040995> on > commons-jxpath, version 1.3. > > Can someone let me know commons-jxpath is really affected by this > vulnerability? If yes, is there any plan to fix this? >