CVE-2014-0114 #358
Description
Less4j depends on commons-beanutils:commons-beanutils:1.8.3 which has a vulnerqbility s reported by the NVD. At the moment, there is no released version of commons-beanutils that is not vulnerable. This is related to Issue 346 since it is also being caused by the same dependency, but hte vulnerability is different.
Issue 346: #346
NVD Report: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0114