CVE descriptions use faulty characters

Currently the CVE description in the security.json files sometimes adds faulty symbols for characters like ’
These should be fixed otherwise the description will look like this:

`"description" : "Apache Maven will follow repositories that are defined in a dependency���s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor...`
