diff --git a/cli/poetry.lock b/cli/poetry.lock
index 5ffa9621..70072094 100644
--- a/cli/poetry.lock
+++ b/cli/poetry.lock
@@ -873,18 +873,21 @@ socks = ["PySocks (>=1.5.6,!=1.5.7,<2.0)"]
 
 [[package]]
 name = "werkzeug"
-version = "2.0.3"
+version = "2.3.4"
 description = "The comprehensive WSGI web application library."
 category = "main"
 optional = false
-python-versions = ">=3.6"
+python-versions = ">=3.8"
 files = [
-    {file = "Werkzeug-2.0.3-py3-none-any.whl", hash = "sha256:1421ebfc7648a39a5c58c601b154165d05cf47a3cd0ccb70857cbdacf6c8f2b8"},
-    {file = "Werkzeug-2.0.3.tar.gz", hash = "sha256:b863f8ff057c522164b6067c9e28b041161b4be5ba4d0daceeaa50a163822d3c"},
+    {file = "Werkzeug-2.3.4-py3-none-any.whl", hash = "sha256:48e5e61472fee0ddee27ebad085614ebedb7af41e88f687aaf881afb723a162f"},
+    {file = "Werkzeug-2.3.4.tar.gz", hash = "sha256:1d5a58e0377d1fe39d061a5de4469e414e78ccb1e1e59c0f5ad6fa1c36c52b76"},
 ]
 
+[package.dependencies]
+MarkupSafe = ">=2.1.1"
+
 [package.extras]
-watchdog = ["watchdog"]
+watchdog = ["watchdog (>=2.3)"]
 
 [[package]]
 name = "zope-event"
@@ -962,4 +965,4 @@ testing = ["coverage (>=5.0.3)", "zope.event", "zope.testing"]
 [metadata]
 lock-version = "2.0"
 python-versions = ">=3.8,<3.11"
-content-hash = "c6cfbe791b25d24b37b5a2afb8ed3701fc238ee5e23ed782a2bc39d85e9d78e1"
+content-hash = "b8ce13f867d3eeb31898836b8b9cf90e04884d03bc88f780b41fea54085ca444"
diff --git a/cli/pyproject.toml b/cli/pyproject.toml
index 68a30cf9..3c250f4f 100644
--- a/cli/pyproject.toml
+++ b/cli/pyproject.toml
@@ -31,7 +31,7 @@ pynacl = "*"
 colorama = "*"
 gevent-websocket = "*"
 stem = "1.8.1"
-werkzeug = "~2.0.3"
+werkzeug = ">=2.0.3,<2.4.0"
 
 [tool.poetry.dev-dependencies]
 pytest = ">=7.2.0"