Ask a Question
Log In / Sign Up
Resources
Ask a Question
Log In Sign Up

Security Vulnerabilities in version 5.7.0 / Windows

FlorianL
Visitor
‎05-25-2022 06:06 AM
‎05-25-2022 06:06 AM

Security Vulnerabilities in version 5.7.0 / Windows

Dear Community.

 

The version 5.7.0 installed through the installer is currently reported as onboarding several High vulnerabilities, as you can see below:

 

1) Java Version onboarded is not up to date and vulnerable

Severity: High

C:\File Program Files\SmartBear\SoapUI-5.7.0\jre\bin\javac.exe version 16.0.1 is vulnerable to CVE-2021-2388, which exists in versions = 16.0.1.

 

2)  ready-uxm-plugin

The library log4j:log4j version 1.2.16 was detected in Maven library manager located at C: /Users/<username>/.soapuios/plugins/ready-uxm-plugin-1.0.1-dist.jar and is vulnerable to CVE-2022-23307, which exists in versions >=1.2.0, < 2.0.0.

Severity: High

 

Can you please provide a version with less security exposure ?

Thank you for the great product and support.

 

KR

0 Kudos
2 REPLIES 2
enriquerrs
New Contributor
‎09-19-2022 11:07 AM
‎09-19-2022 11:07 AM

Hi did you get response from this?

 

1) Java Version onboarded is not up to date and vulnerable

Severity: High

C:\File Program Files\SmartBear\SoapUI-5.7.0\jre\bin\javac.exe version 16.0.1 is vulnerable to CVE-2021-2388, which exists in versions = 16.0.1.

0 Kudos
Selvas14
New Member
‎10-06-2022 02:44 AM
‎10-06-2022 02:44 AM

Hi Smartbear team, 

Any update on the above vulnerabilites fixes?

As this reporting is holding us to go further.

Sen.

0 Kudos
Subscribe
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: