Recently in september the new version for major version 5.3 was released which was v5.3.30 many vulnerabilities were resolved in that version. But still our vercode scan is showing one high flaw in spring-web-5.3.30.
I wanted to raise a query to know that is there any plan to resolve that in near future? Are we expecting a new version for spring 5.3 with no flaws in that?
Comment From: bclozel
Is there a CVE id attached to this vulnerability? Without this information your report is not really actionable.
More importantly, did you search our issue tracker for this CVE id?
Comment From: minal107
@bclozel Thanks for commenting on the question. Yes when I searched with CVE id that was attached with this, there are multiple discussions done for this CVE.
I got my answers from those discussions. Closing this issue.
Comment From: bclozel
Thanks for letting us know.