Hi team, there is vulnerability CVE-2018-9116 detected in the mavenorg.wiremockwiremock-standalone:3.13.1. Could you please provide details on a fix or recommended workaround? Thanks!

Hi, could you point me to where you are seeing this CVE associated to WireMock

3.13.1

? All references I can find for this CVE relate to a really old version of WireMock -

An XXE vulnerability within WireMock before 2.16.0

Hi, internal 3pp Dashboard that is shown detected by Nexus

Very strange, I don't see the same in our security monitoring

Taking this CVE identification internally with our Security team. Will update result here. Thank you

I would be interested to know if you see the same issue with the newer 4.x beta releases

CC; @Orelie Fridler