Hi,
As per NVD, the Bouncy Castle1.0.1 and elasticsearch-rest-high-level-client-7.16.3 present in readonlyrest-1.40.0_es7.16.3.zip are vulnerable.
CVE numbers are as follows:
- CVE-2007-6721
- CVE-2020-26939
- CVE-2016-1000338
- CVE-2016-1000343
- CVE-2016-1000341
- CVE-2017-13098
- CVE-2020-15522
- CVE-2016-1000342
- CVE-2016-1000345
- CVE-2016-1000352
- CVE-2016-1000339
- CVE-2016-1000344
- CVE-2018-5382
- CVE-2016-1000346
- CVE-2018-1000180
- CVE-2013-1624
- CVE-2022-23710
- CVE-2022-23708
Please have a look into this.