cancel
Showing results for 
Search instead for 
Did you mean: 

Vulnerabilities in latest docker image of neo4j 4.4.9

Karishma_1
Node

Hi ,

We are using neo4j 4.4.9 community edition for one of our projects. While scanning with the aquasec scanner, we are getting this CVE.

this CVE is associated with Java packages which have high vulnerabilities 

CVE:2022-33980- common configuration2 2.7

is it possible to update the packages for neo4j? Or is it possible to release a version/bug fix with this vulnerabilities resolution ?

 

1 REPLY 1

Cobra
Ninja
Ninja

Hello @Karishma_1 😊

You should raise an issue here or here.

Regards,
Cobra

Nodes 2022
Nodes
NODES 2022, Neo4j Online Education Summit

On November 16 and 17 for 24 hours across all timezones, you’ll learn about best practices for beginners and experts alike.