From ecf48430b458278c9bf5b5bd65a698c1987b3c44 Mon Sep 17 00:00:00 2001
From: Avgustin Marinov <Avgustin.Marinov@bosch.com>
Date: Mon, 23 Oct 2023 13:11:26 +0300
Subject: [PATCH] Fix for CVE-2022-31690 (2) (#1460)

Signed-off-by: Marinov Avgustin <Avgustin.Marinov@bosch.com>
---
 pom.xml | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 60a6d6f28..5a825d6c1 100644
--- a/pom.xml
+++ b/pom.xml
@@ -146,7 +146,7 @@
       <spring.cloud.version>2021.0.5</spring.cloud.version>
       <spring.plugin.core.version>2.0.0.RELEASE</spring.plugin.core.version>
       <!-- CVE-2022-31690 Remove after Spring 3.0.0 migration-->
-      <spring.security.oauth2.client.version>5.7.10</spring.security.oauth2.client.version>
+      <spring.security.oauth2.client.version>5.7.11</spring.security.oauth2.client.version>
 
       <!-- Swagger Support -->
       <springdoc-openapi.version>1.7.0</springdoc-openapi.version>
@@ -854,6 +854,12 @@
             <artifactId>spring-plugin-core</artifactId>
             <version>${spring.plugin.core.version}</version>
          </dependency>
+         <!-- CVE-2022-31690 Remove after Spring 3.0.0 migration-->
+         <dependency>
+            <groupId>org.springframework.security</groupId>
+            <artifactId>spring-security-oauth2-client</artifactId>
+            <version>${spring.security.oauth2.client.version}</version>
+         </dependency>
 
          <!-- Swagger Support -->
          <dependency>