diff --git a/dependency-check-core/src/main/java/org/owasp/dependencycheck/dependency/Vulnerability.java b/dependency-check-core/src/main/java/org/owasp/dependencycheck/dependency/Vulnerability.java
index 43077cfd1..f980936ab 100644
--- a/dependency-check-core/src/main/java/org/owasp/dependencycheck/dependency/Vulnerability.java
+++ b/dependency-check-core/src/main/java/org/owasp/dependencycheck/dependency/Vulnerability.java
@@ -94,6 +94,10 @@ public class Vulnerability implements Serializable, Comparable<Vulnerability> {
      * Whether or not all previous versions were affected.
      */
     private String matchedAllPreviousCPE;
+    /**
+     * The notes for the vulnerability.
+     */
+    private String notes;
 
     /**
      * Get the value of name.
@@ -118,6 +122,7 @@ public class Vulnerability implements Serializable, Comparable<Vulnerability> {
      *
      * @return the value of description
      */
+
     public String getDescription() {
         return description;
     }
@@ -279,11 +284,6 @@ public class Vulnerability implements Serializable, Comparable<Vulnerability> {
         this.cwe = cwe;
     }
 
-    /**
-     * The notes for the vulnerability.
-     */
-    private String notes;
-
     /**
      * Get the value of notes from suppression notes.
      *
diff --git a/dependency-check-core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java b/dependency-check-core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java
index 24a8fa5c6..f00390351 100644
--- a/dependency-check-core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java
+++ b/dependency-check-core/src/main/java/org/owasp/dependencycheck/xml/suppression/SuppressionRule.java
@@ -180,7 +180,7 @@ public class SuppressionRule {
      * The notes added in suppression file
      */
 
-    private String notes = new String();
+    private String notes;
 
     /**
      * Get the value of notes.