Update dependency org.hibernate:hibernate-validator to v5.2.5.Final #209
Dev - Mend for GitHub.com / Mend Security Check
failed
Aug 29, 2025 in 18m 53s
Security Report
❌ New vulnerabilities:
| Vulnerability | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue | Reachability |
|---|---|---|---|---|---|---|
CVE-2020-10693Path to dependency file: /pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/hibernate/hibernate-validator/5.2.5.Final/hibernate-validator-5.2.5.Final.jar Dependency Hierarchy: -> ❌ hibernate-validator-5.2.5.Final.jar (Vulnerable Library) |
 Medium |
5.3 | hibernate-validator-5.2.5.Final.jar | Upgrade to version: org.hibernate.validator:hibernate-validator:6.0.20.Final,org.hibernate.validator:hibernate-validator:6.1.5.Final | #130 |
|
✔️ Remediated vulnerabilities:
| Vulnerability | Vulnerable Library |
|---|---|
| GHSA-wrr7-33fx-rcvj | jackson-databind-2.8.4.jar |
| CVE-2020-10693 | hibernate-validator-5.2.1.Final.jar |
| CVE-2017-7536 | hibernate-validator-5.2.1.Final.jar |
Base branch total remaining vulnerabilities: 208
Base branch commit: 498f371cf2745f3522d79e209a3a246e98a98f3d
Total libraries scanned: 107
Scan token: 3b134ce10f894910bbf9bbf8e62cf5e6
Loading