cybersource-sdk-java icon indicating copy to clipboard operation
cybersource-sdk-java copied to clipboard

Published 20 hours ago verified publisher icon CyberSource

Bump xalan to 2.7.3

Open bmiller-0 opened this issue 2 years ago • 0 comments

Cybersource imports xalan-2.7.2.jar, which has a vulnerability noted in CVE-2022-34169 https://nvd.nist.gov/vuln/detail/CVE-2022-34169

The issue is fixed in xalan-2.7.3. Would like to see if cybersource could be updated accordingly

bmiller-0 avatar Nov 01 '23 19:11 bmiller-0