Hi,
A new vulnerability, known as Spring4Shell, has been notified. This vulnerability, under revision, affects applications that use JDK v9 or above that run Apache Tomcat as the Servlet Container in a WAR package and use dependencies of the spring-webmvc or spring-webflux from the Spring Framework. This vulnerability is being tracked under CVE-2022-22965.
Please could inform us it Appian or any of its modules, development, plugins etc, could be affected by this vulnerability so far known?
Best regards,
Jesus Salazar
Discussion posts and replies are publicly visible
hi, i would love to learn about the occurrence of Spring4Shell vulnerability. where does it come from? fnf online