Impact of CVE-2022-22965 and CVE-2022-22963 Spring4Shell vulnerabilities (4039739)

Chatee ahora con Soporte

Regresar

Comentarios enviados

¿Este artículo solucionó su problema?

Seleccionar calificación

Título

Impact of CVE-2022-22965 and CVE-2022-22963 Spring4Shell vulnerabilities
Descripción

A critical vulnerability was recently discovered related to systems/software that run Spring MVC or Spring WebFlux application on JDK 9+

More information about this vulnerability can be found here National Vulnerability Database - CVE-2022-22965 (nist.gov) and here National Vulnerability Database - CVE-2022-22963 (nist.gov)
Causa

This is an industry-wide vulnerability and is not specific to DR Series appliances and QoreStor.
Resolución

These vulnerabilities were discovered in the Java Spring Framework and its Spring Cloud Function component, respectively, and DR Series appliances and QoreStor do not use these components, therefore they are not affected.

Comentarios enviados

¿Este artículo solucionó su problema?

Seleccionar calificación

Contenido recomendado

Producto(s):: DR Series
DR6000, DR4100, DR4000, DR6300, DR4300e, DR4300, DR2000v; QoreStor
7.1.1, 7.1.0, 7.0.1, 7.0.0, 6.1.0, 6.0.0

Título