Updated latest cli and java wrapper version

[cx-anurag-dalke]

Testing done

Submitter checklist

• Make sure you are opening from a topic/feature/bugfix branch (right side) and not your main branch!
• Ensure that the pull request title represents the desired changelog entry
• Please describe what you did
• Link to relevant issues in GitHub or Jira
• Link to relevant pull requests, esp. upstream and downstream changes
• Ensure you have provided tests that demonstrate the feature works or the issue is fixed

[github-actions]

Checkmarx One – Scan Summary & Details – 755a0ee2-368e-45c1-969c-fe58fc17eee9

New Issues (13)

Checkmarx found the following issues in this Pull Request

Severity	Issue	Source File / Package	Checkmarx Insight
	CVE-2016-1000027	Maven-org.springframework:spring-web-5.3.34	details Recommended version: 5.3.36-wso2v1 Description: Pivotal Spring Framework (spring, spring-remoting, spring-web, spring-webmvc) versions prior to 6.0.0-M1, suffers from a potential remote code exec... Attack Vector: NETWORK Attack Complexity: LOW ID: G57I7IL9G5zk36cRiD1VD66FhrWmbDOH7HrVrhjTZl0%3D Vulnerable Package
	CVE-2025-22228	Maven-org.springframework.security:spring-security-crypto-5.8.11	details Recommended version: 5.8.16-atlassian-1-m01 Description: The Spring Security "BCryptPasswordEncoder.matches(CharSequence, String)" method may incorrectly return true for passwords longer than 72 character... Attack Vector: NETWORK Attack Complexity: HIGH ID: XNQgD7TmNqhR70PbkOcWXcAF%2F2PRlrEdGEIPi507IY4%3D Vulnerable Package
	Cx78f40514-81ff	Maven-commons-collections:commons-collections-3.2.2	details Description: The framework Apache Commons Collections before 4.3 is vulnerable to Stack Overflow. The function `add()` in the file `list/SetUniqueList.java` thr... Attack Vector: NETWORK Attack Complexity: LOW ID: MJir7CxXzyUO6lJTZKEPpZutWkCz4UAKo7ifeF4Eoh0%3D Vulnerable Package
	CVE-2024-38809	Maven-org.springframework:spring-web-5.3.34	details Recommended version: 5.3.36-wso2v1 Description: The package "org.springframework:spring-web" versions through 5.3.37, 6.0.0-M1 through 6.0.22, and 6.1.0-M1 through 6.1.11 are vulnerable to Denial... Attack Vector: NETWORK Attack Complexity: LOW ID: u4F8oP8evyjiuVlmWrO7CVh65a7LjywlK1I6%2BaPRYTs%3D Vulnerable Package
	CVE-2024-38827	Maven-org.springframework.security:spring-security-core-5.8.11	details Recommended version: 5.8.16 Description: The usage of 'String.toLowerCase()' and 'String.toUpperCase()' has some Locale dependent exceptions that could potentially result in authorization ... Attack Vector: NETWORK Attack Complexity: LOW ID: cAM6745mGUbITgC7O9vjgcB%2BGDduHMQjfF%2FGHzPOJrQ%3D Vulnerable Package
	CVE-2024-38827	Maven-org.springframework.security:spring-security-crypto-5.8.11	details Recommended version: 5.8.16-atlassian-1-m01 Description: The usage of 'String.toLowerCase()' and 'String.toUpperCase()' has some Locale dependent exceptions that could potentially result in authorization ... Attack Vector: NETWORK Attack Complexity: LOW ID: %2FFjUCohiAmo0YxZpUNH4vZ%2B5Y9q%2BTkF5vSACTngwXnU%3D Vulnerable Package
	CVE-2024-6763	Maven-org.eclipse.jetty:jetty-server-10.0.22	details Recommended version: 10.0.25 Description: Eclipse Jetty is a lightweight, highly scalable, Java-based web server and Servlet engine. It includes a utility class, 'HttpURI', for URI/URL pars... Attack Vector: NETWORK Attack Complexity: LOW ID: JbqWvgf9EONSiFHdp0lLvkhr%2BSbHCMFwkoSFBMgHWUg%3D Vulnerable Package
	CVE-2024-8184	Maven-org.eclipse.jetty:jetty-server-10.0.22	details Recommended version: 10.0.25 Description: There exists a security vulnerability in Jetty's "ThreadLimitHandler.getRemote()" which can be exploited by unauthorized users to cause a remote De... Attack Vector: NETWORK Attack Complexity: LOW ID: vIcs5fsARKi1GTRQHcxEO6VxwNFcAamc1UZB6uxjD%2BU%3D Vulnerable Package
	CVE-2025-48924	Maven-org.apache.commons:commons-lang3-3.17.0	details Recommended version: 3.18.0 Description: Uncontrolled Recursion vulnerability in Apache Commons Lang. The methods `ClassUtils.getClass(...)` can `throwStackOverflowError` on very long inpu... Attack Vector: NETWORK Attack Complexity: LOW ID: F7cWYl881DCLTiyf1jA4PtL%2BQbtNgP6JskiGxbIj%2FIk%3D Vulnerable Package
	CVE-2025-48924	Maven-commons-lang:commons-lang-2.6	details Description: Uncontrolled Recursion vulnerability in Apache Commons Lang. The methods `ClassUtils.getClass(...)` can `throwStackOverflowError` on very long inpu... Attack Vector: NETWORK Attack Complexity: LOW ID: LQRpsqAqwLZ%2BSLvLGjKr%2FfbceLYRsPeGyPPG1J19VHs%3D Vulnerable Package
	CVE-2025-53864	Maven-com.google.code.gson:gson-2.11.0	details Recommended version: 2.12.0 Description: Connect2id Nimbus JOSE + JWT allows a remote attacker to cause a Denial-of-Service (DoS) via a deeply nested JSON object supplied in a JWT claim se... Attack Vector: NETWORK Attack Complexity: LOW ID: JFT2fyUw2I%2B0iNR1cvU1oR1ahCty%2Bd%2FfgQ9nZMBPMO8%3D Vulnerable Package
	CVE-2024-38820	Maven-org.springframework:spring-core-5.3.34	details Recommended version: 5.3.36-wso2v1 Description: The fix for CVE-2022-22968 made "disallowedFields" patterns in "DataBinder" case-insensitive. However, using "String.toLowerCase()" introduces some... Attack Vector: NETWORK Attack Complexity: LOW ID: 4WaVlKtBH3Qbx73Uji4g28I3OnX9PomRUDhtFSsB%2B5Y%3D Vulnerable Package
	CVE-2024-38820	Maven-org.springframework:spring-web-5.3.34	details Recommended version: 5.3.36-wso2v1 Description: The fix for CVE-2022-22968 made "disallowedFields" patterns in "DataBinder" case-insensitive. However, using "String.toLowerCase()" introduces some... Attack Vector: NETWORK Attack Complexity: LOW ID: 9Ops9TLZ%2B1B12uwr2JIehYwM5ymflVWnsmv8fqsRutA%3D Vulnerable Package