Community

Spring Framework RCE CVE Response

429
1
03-31-2022 10:43 AM
JohnSmith3434
by
New Contributor
‎03-31-2022 10:43 AM

We would be interested in a response to whether or not any Esri products are vulnerable to the recently announced Spring Framework RCE CVE (https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement) and if so what mitigations / updates can be put in place to remediate the vulnerability.

Tags (4)
0 Kudos
1 Reply
TonyContreras_Frisco_TX
by
Occasional Contributor III
‎03-31-2022 03:00 PM

So far, no information yet. The Security Team is still looking into the issue, Keep checking this Post for updates.

0 Kudos