ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Spring4Shell vulnerability CVE-2022-22965 and DLP

book

Article ID: 238391

calendar_today

Updated On:

Products

Data Loss Prevention

Issue/Introduction

Does the Spring4Shell vulnerability, CVE-2022-22965, affect Data Loss Prevention (DLP)?

Resolution

This vulnerability affects the JDK 9 and higher libraries, whereas DLP deployments use the JDK 8 library.

Hence, DLP on-premise, as well as DLP cloud, is not affected by this vulnerability.

For the most up-to-date information refer to the security advisory in the following link.

SecurityAdvisories/Symantec-Security-Advisory-for-Spring-Framework-CVE-2022-22965