Servoy Forum

Discuss Servoy here!
https://forum.servoy.com/

Spring4Shell Zero-Day Vulnerability

https://forum.servoy.com/viewtopic.php?f=5&t=23477

Page 1 of 1

Spring4Shell Zero-Day Vulnerability

PostPosted: Fri Apr 01, 2022 9:49 am
by Mark Voorboom
Hi!

Can someone or Servoy confirm is this vulnerability is also affecting the Servoy application server?

Sources:
https://tanzu.vmware.com/security/cve-2022-22965
https://unit42.paloaltonetworks.com/cve ... ringshell/

Thnx.

Re: Spring4Shell Zero-Day Vulnerability

PostPosted: Fri Apr 01, 2022 10:04 am
by ROCLASI
Hi Mark,

I am pretty sure Servoy doesn't use, or ever used, the Spring Framework. But Johan can confirm this with certainty.

Re: Spring4Shell Zero-Day Vulnerability

PostPosted: Fri Apr 01, 2022 11:09 am
by jcompagner
No Servoy doesn't use the spring framework, so we are not affected

Re: Spring4Shell Zero-Day Vulnerability

PostPosted: Fri Apr 01, 2022 11:11 am
by Mark Voorboom
Thnx Johan for the quick answer! With this we can inform our customers.
All times are UTC + 1 hour [ DST ]
Page 1 of 1