21.03.2023
06:50
We have a reported vulnerability in commons-text-1.6.jar
Is there a way to replace the file or upgrade? It is a year old vulnerability and there are newer versions just never replaced by webcon.
Vulnerability name
CVE-2022-42889
Severity
Critical
21.03.2023
08:47
Based on 'CVE reports for Apache Solr dependencies' at https://solr.apache.org/security.html looks that CVE-2022-42889 is not affected to Solr.
If you want to replace library to newer version, you can try to replace related files same way as for log4j vulnerability, but we didn't test this way in this case.
