Description:
Request to update Apache Commons Text to version 1.10.0 I am referencing hxxps://nvd.nist.gov/vuln/detail/cve-2022-42889
Detail:
I recently moved our ESET Protect to Windows Server 2019 from 2012 R2, I'm trying to patch Apache Commons Text to version 1.10.0, but I am not able to do so without breaking the ESET web console. Is it possible to patch Apache Commons Text to 1.10.0 in a future patch?
Flagged files on our ESET Protect server:
C:\\Program Files\\Apache Software Foundation\\apache-tomcat-9.0.68\\webapps\\era\\WEB-INF\\lib\\commons-text-1.9.jar
C:\\Program Files\\Microsoft SQL Server\\150\\DTS\\Extensions\\Common\\Jars\\commons-configuration-1.6.jar
Please reference my ESET Support Case Update: #00503524
Thank you!!