Is Toad for Oracle affected by vulnerability CVE-2022-42889?
説明
Is Toad for Oracle or Toad Data Point affected by vulnerability CVE-2022-42889?
原因
NA
対策
Toad for Oracle or Toad Data Point do not use Apache Commons Text Packages hence they are not affected with the vulnerability CVE-2022-42889.
追加情報
A flaw was found in Apache Commons Text packages 1.5 through 1.9. The affected versions allow an attacker to benefit from a variable interpolation process contained in Apache Commons Text, which can cause properties to be dynamically defined. Server applications are vulnerable to remote code execution (RCE) and unintentional contact with untrusted remote servers.
