Dependency Updates #813
Description
Background
List of vulnerabilities and their respective patches:
-Vulnerability: apache commons text remote code execution (cve-2022-42889)
Dependency: commons-text-1.9.jar
Fix version: 1.10.0
-Vulnerability: spring framework security bypass (cve-2023-20860)
Dependency: spring-core-5.3.18.jar
Fix version: 5.3.26
-Vulnerability: spring security authorization bypass
Dependency: spring-security-core-5.6.1.jar
Fix version: 5.6.9
Proposed Solution [Optional]
Solution Ideas:
- Patch vulnerable dependencies