Vulnerability in net.minidev_json-smart
search cancel

Vulnerability in net.minidev_json-smart

book

Article ID: 241485

calendar_today

Updated On: 10-03-2023

Products

Workload Automation Agent

Issue/Introduction

It has been reported net.minidev_json-smart jar has a vulnerability. 

Environment

Release : 12.0

Component : Workload Automation System Agent

Resolution

The json-smart.jar is specifically used by appservice and webservice plugins.

If you don't use/enable this plugin, you can remove the json-smart.jar manually. 

Otherwise, you can update the jar but you need to update the dependent jars as well.
net.minidev:json-smart has dependency on net.minidev:accessors-smart
Both jars can be updated to 2.3.1 version.