Jet uses `org.apache.hadoop:hadoop-client` which uses `commons-io:commons-io` in version `2.5` which includes following vulnerability: - CVE-2021-29425 - https://nvd.nist.gov/vuln/detail/CVE-2021-29425 (it should be fixed in version 2.7 - however is seems to currently be in `UNDERGOING REANALYSIS` state in that version)
Jet uses
org.apache.hadoop:hadoop-clientwhich usescommons-io:commons-ioin version2.5which includes following vulnerability:UNDERGOING REANALYSISstate in that version)