new finding classified as a security vulnerability. This problem, however, was given a High score in terms of risk because it enables an access policy bypass caused by faulty URL normalization. This

had its root cause in a 3rd-party dependency which assigned the following CVE: Title GHSA CVE CVSS score Attacker-controlled parameter can cause DoS of avro GHSA-9x44-9pgq-cf 45 CVE-2023-374 75 7.5