CVE-2022-42889 was published in the National Vulnerability Database on 13 October, 2022. More information can be found here.
The vulnerability is caused with the use of Apache Commons Text 1.5 through 1.9. Is AAI affected by this?
AAI is not affected by this vulnerability.