Hello.
Our (CloudBeaver) aws-inspector returned us the information - that the databend-jdbc-0.3.9.jar has the commons-lang3 CVE-2025-48924 vulnerability.
It is true, as I can see in your code
|
<version>3.13.0</version> |
Here is the link with the visible vulnerability https://mvnrepository.com/artifact/org.apache.commons/commons-lang3/3.13.0
I hope you will fix that, and we will increase the version number in our application.
Hello.
Our (CloudBeaver) aws-inspector returned us the information - that the databend-jdbc-0.3.9.jar has the commons-lang3 CVE-2025-48924 vulnerability.
It is true, as I can see in your code
databend-jdbc/databend-jdbc/pom.xml
Line 31 in 0b0d9eb
Here is the link with the visible vulnerability https://mvnrepository.com/artifact/org.apache.commons/commons-lang3/3.13.0
I hope you will fix that, and we will increase the version number in our application.