[Snyk] Fix for 26 vulnerabilities

[crashdump]

Snyk has created this PR to fix 26 vulnerabilities in the maven dependencies of this project.

Snyk changed the following file(s):

• pom.xml

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score	Upgrade
	Remote Code Execution SNYK-JAVA-ORGSPRINGFRAMEWORK-2436751	691	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found Mature
	Improper Input Validation SNYK-JAVA-ORGSPRINGFRAMEWORK-1009832	361	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 No Path Found No Known Exploit
	Open Redirect SNYK-JAVA-ORGSPRINGFRAMEWORK-6261586	304	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found Proof of Concept
	Open Redirect SNYK-JAVA-ORGSPRINGFRAMEWORK-6444790	168	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Authentication Bypass by Primary Weakness SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-9486467	159	Major version upgrade No Path Found No Known Exploit
	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-5564390	152	Major version upgrade No Path Found No Known Exploit
	Information Exposure SNYK-JAVA-ORGSPRINGFRAMEWORK-31689	150	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 No Path Found No Known Exploit
	Cross-Site Tracing (XST) SNYK-JAVA-ORGSPRINGFRAMEWORK-451604	140	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 No Path Found No Known Exploit
	Integer Overflow or Wraparound SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-2833360	115	Major version upgrade No Path Found Proof of Concept
	Multipart Content Pollution SNYK-JAVA-ORGSPRINGFRAMEWORK-460644	109	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 No Path Found No Known Exploit
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGSPRINGFRAMEWORK-5422217	105	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Insecure Temporary File SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-2438287	105	Major version upgrade No Path Found No Known Exploit
	Cryptographic Weakness SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-570203	104	Major version upgrade No Path Found No Known Exploit
	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-2823313	91	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Open Redirect SNYK-JAVA-ORGSPRINGFRAMEWORK-6597980	88	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Authorization Bypass SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399273	77	Major version upgrade No Path Found No Known Exploit
	Improper Handling of Case Sensitivity SNYK-JAVA-ORGSPRINGFRAMEWORK-2689634	71	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found Proof of Concept
	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-7687447	65	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-72470	61	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 No Path Found No Known Exploit
	Improper Handling of Case Sensitivity SNYK-JAVA-ORGSPRINGFRAMEWORK-8230366	53	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Denial of Service (DoS) SNYK-JAVA-ORGSPRINGFRAMEWORK-2434828	48	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Allocation of Resources Without Limits or Throttling SNYK-JAVA-ORGSPRINGFRAMEWORK-3369749	45	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Improper Output Neutralization for Logs SNYK-JAVA-ORGSPRINGFRAMEWORK-2329097	41	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Improper Input Validation SNYK-JAVA-ORGSPRINGFRAMEWORK-2330878	41	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Improper Handling of Case Sensitivity SNYK-JAVA-ORGSPRINGFRAMEWORK-8230364	40	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit
	Improper Handling of Case Sensitivity SNYK-JAVA-ORGSPRINGFRAMEWORK-8230365	40	org.springframework:spring-web: 4.3.3.RELEASE -> 6.1.14 Major version upgrade No Path Found No Known Exploit

Vulnerabilities that could not be fixed

• Upgrade:
  • Could not upgrade org.springframework.boot:spring-boot-autoconfigure@1.5.1.RELEASE to org.springframework.boot:spring-boot-autoconfigure@3.2.11; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/springframework/boot/spring-boot-dependencies/1.5.1.RELEASE/spring-boot-dependencies-1.5.1.RELEASE.pom
• Could not upgrade org.springframework.cloud:spring-cloud-commons@1.1.7.RELEASE to org.springframework.cloud:spring-cloud-commons@4.3.0; Reason could not apply upgrade, dependency is managed externally ; Location: provenance does not contain location

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Improper Input Validation
🦉 Cross-Site Tracing (XST)
🦉 Open Redirect
🦉 More lessons are available in Snyk Learn