ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Is PacketShaper S-Series or PolicyCenter S-Series affected by the Sprong4Shell vulnerability, CVE-2022-22965 ?

book

Article ID: 238572

calendar_today

Updated On:

Products

PacketShaper S-Series PolicyCenter S-Series

Issue/Introduction

A Spring Framework application running on Java Development Kit version 9 or later may be vulnerable to remote code execution attacks and follow-on exploitation under certain conditions. This vulnerability has been assigned CVE-2022-22965 and is known as “Spring4Shell.”

Resolution

Packetshaper S-Series and PolicyCenter S-Series is not affected in any version by the Spring4Shell vulnerability CVE-2022-22965

Additional Information

Symantec Security Advisory - https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/20427