NCM 10.1.6 release contains a resolution to these vulnerabilities
| Third-party Component | New Version | Vulnerabilities fixed |
|---|---|---|
| Micronaut | 1.3.7 | CVE-2020-7611 |
| Quartz | 2.3.2 | CVE-2019-13990 |
| zlib | 1.2.11 | CVE-2016-9843, CVE-2016-9841, CVE-2003-0107, CVE-2016-9842, CVE-2016-9840 |
| openssl | 1.1.1g FIPs | CVE-2021-3711, CVE-2021-23840, CVE-2021-3449, CVE-2021-23841, CVE-2020-1971 |
| restlet | 2.4.0 | CVE-2013-4221, CVE-2013-4271, CVE-2014-2228, CVE-2017-14868, CVE-2017-14949 |
| log4j | 2.14.1 | CVE-2019-17571, CVE-2020-9488 |
| bzip2 | 1.0.8 | CVE-2019-12900, CVE-2010-0405, CVE-2002-0759, CVE-2005-1260, CVE-2011-4089, CVE-2008-1372, CVE-2005-0953, CVE-2002-0761, CVE-2002-0760 |
| tomcat | 9.0.50 | CVE-2021-30640, CVE-2021-33037, CVE-2021-25122, CVE-2020-17527, CVE-2021-25329, CVE-2020-9484, CVE-2021-24122 |
| zebedee | 2.5.3 | CVE-2005-2904 |
| openjdk | 11.0.12 | CVE-2020-14792, CVE-2021-2388, CVE-2020-14803, CVE-2020-14782, CVE-2021-2341, CVE-2020-14779, CVE-2021-2369, CVE-2020-14781, CVE-2021-2161, CVE-2020-14797, CVE-2021-2163, CVE-2020-14796, CVE-2020-14798 |
| plexus-utils | 3.2.1 | CVE-2017-1000487 |
