* [org.apache.avro:avro:jar:1.11.1](https://ossindex.sonatype.org/component/pkg:maven/org.apache.avro/avro@1.11.1?utm_source=ossindex-client&utm_medium=integration&utm_content=1.8.1) in compile * CVE-2023-39410, severity CWE-502: Deserialization of Untrusted Data (7.5)
